Jenkins Chef Identity Plugin 2.0.3 and earlier does not mask the user.pem key form field, increasing the potential for attackers to observe and capture it.
Metrics
Affected Vendors & Products
References
History
Wed, 23 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: jenkins
Published: 2023-07-26T13:54:54.847Z
Updated: 2024-10-23T14:46:08.450Z
Reserved: 2023-07-25T11:16:13.336Z
Link: CVE-2023-39155
Vulnrichment
Updated: 2024-08-02T18:02:06.654Z
NVD
Status : Modified
Published: 2023-07-26T14:15:10.700
Modified: 2024-11-21T08:14:48.977
Link: CVE-2023-39155
Redhat
No data.