Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some cases.
History

Fri, 29 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-532
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2024-06-26T17:06:27.695Z

Updated: 2024-11-29T15:59:03.401Z

Reserved: 2024-06-25T08:12:57.626Z

Link: CVE-2024-39460

cve-icon Vulnrichment

Updated: 2024-08-02T04:26:15.217Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-26T17:15:27.180

Modified: 2024-11-29T16:15:10.243

Link: CVE-2024-39460

cve-icon Redhat

Severity : Low

Publid Date: 2024-06-26T00:00:00Z

Links: CVE-2024-39460 - Bugzilla