How severe is CVE-2025-30197?

CVE-2025-30197 has a CVSS v3 score of 3.1 (LOW).

CVE-2025-30197

Name: zoho_qengine
Author: jenkins

3.1LOW

Jenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form field, increasing the potential for attackers to observe and capture it.

Publicado: 3/19/2025Actualizado: 10/10/2025

Descripción

Jenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form field, increasing the potential for attackers to observe and capture it.

Análisis IAImpulsado por IA

Productos Afectados

jenkinszoho_qengine

Referencias

https://www.jenkins.io/security/advisory/2025-03-19/#SECURITY-3511
Vendor Advisory