Jenkins Code Dx Plugin 3.1.0 and earlier does not mask Code Dx server API keys displayed on the configuration form, increasing the potential for attackers to observe and capture them.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: SNPS

Published: 2023-05-16T17:56:40.703Z

Updated: 2024-08-02T06:26:09.730Z

Reserved: 2023-05-10T15:00:46.137Z

Link: CVE-2023-2633

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-05-16T18:15:17.453

Modified: 2024-11-21T07:58:58.287

Link: CVE-2023-2633

cve-icon Redhat

No data.