CVE-2024-47803

4.3MEDIUM

Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field.

Published: 10/2/2024Updated: 3/19/2025
View on NVDView on MITRE

Description

Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field.

AI AnalysisPowered by AI

Affected Products

jenkinsjenkins
jenkinsjenkins

References