CVE-2023-39152

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-39152

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-39152.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-39152

Aliases

GHSA-pvjf-4hfg-wr84

Withdrawn

2024-09-03T04:41:27.119481Z

Published

2023-07-26T14:15:10Z

Modified

2024-09-03T04:32:53.354184Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked (i.e., replaced with asterisks) in the build log in some circumstances.

References

Affected packages

Git / github.com/jenkinsci/gradle-plugin

Affected ranges

Type: GIT
Repo: https://github.com/jenkinsci/gradle-plugin
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

26852ff123b07ebde3cc78ee0e3f0b399bffd293

Affected versions

gradle-1.*

gradle-1.10

gradle-1.11

gradle-1.12

gradle-1.13

gradle-1.14

gradle-1.15

gradle-1.16

gradle-1.17

gradle-1.18

gradle-1.19

gradle-1.20

gradle-1.21

gradle-1.22

gradle-1.23

gradle-1.24

gradle-1.25

gradle-1.26

gradle-1.27

gradle-1.27.1

gradle-1.28

gradle-1.29

gradle-1.30

gradle-1.31

gradle-1.32

gradle-1.33

gradle-1.34

gradle-1.35

gradle-1.36

gradle-1.37

gradle-1.37.1

gradle-1.38

gradle-1.39

gradle-1.39.1

gradle-1.39.2

gradle-1.39.3

gradle-1.39.4

gradle-1.40

gradle-1.5

gradle-1.6

gradle-1.7

gradle-1.7.1

gradle-1.8

gradle-1.9

gradle-2.*

gradle-2.0

gradle-2.1

gradle-2.1.1

gradle-2.2

gradle-2.3

gradle-2.3.1

gradle-2.3.2

gradle-2.4

gradle-2.5

gradle-2.5.1

gradle-2.6

gradle-2.7

gradle-2.8