How severe is CVE-2025-30197?

CVE-2025-30197 has a CVSS v3 score of 3.1 (LOW).

CVE-2025-30197

Name: zoho_qengine
Author: jenkins

3.1LOW

Jenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form field, increasing the potential for attackers to observe and capture it.

Published: 3/19/2025Updated: 10/10/2025

Description

Jenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form field, increasing the potential for attackers to observe and capture it.

AI AnalysisPowered by AI

Affected Products

jenkinszoho_qengine

References

https://www.jenkins.io/security/advisory/2025-03-19/#SECURITY-3511
Vendor Advisory