How severe is CVE-2023-39152?

CVE-2023-39152 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-39152

Name: gradle
Author: jenkins

6.5MEDIUM

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Publicado: 7/26/2023Actualizado: 11/21/2024

Descripción

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Análisis IAImpulsado por IA

Productos Afectados

jenkinsgradle

2.8

Referencias

http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory
http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory