How severe is CVE-2023-39152?

CVE-2023-39152 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-39152

Name: gradle
Author: jenkins

6.5MEDIUM

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

发布于: 7/26/2023更新于: 11/21/2024

描述

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

AI分析AI驱动

受影响产品

jenkinsgradle

2.8

参考资料

http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory
http://www.openwall.com/lists/oss-security/2023/07/26/2
Mailing List
https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3208
Vendor Advisory