How severe is CVE-2023-39152?

CVE-2023-39152 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-39152

Name: gradle
Author: jenkins

6.5MEDIUM

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Publicado: 7/26/2023Atualizado: 11/21/2024

Descrição

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

Análise IADesenvolvido por IA

Produtos Afetados

jenkinsgradle

2.8

Referências

http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory
http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory