Vulnerability Details CVE-2023-41934
Jenkins Pipeline Maven Integration Plugin 1330.v18e473854496 and earlier does not properly mask (i.e., replace with asterisks) usernames of credentials specified in custom Maven settings in Pipeline build logs if "Treat username as secret" is checked.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.7%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2023-41934
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.4
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.5
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.6
-
cpe:2.3:a:jenkins:pipeline_maven_integration:0.7
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1.7.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1161.v89a_7dcec5d31
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1195.v3b_a_d1b_e792e0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1201.v1fce0b_9b_a_e24
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1203.v75b_321f1c89f
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1205.vceea_7b_972817
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1226.v833b_d9f526b_9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1235.v2db_ddd9f797b
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1239.v08f725b_927d9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1256.v14a_6e1e0de4b
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1257.v89e586d3c58c
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1274.v870c8cb_fa_369
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1279.v5d711113020f
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1290.vf21c81e8c57f
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1293.v6c4d0ce54ee8
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1298.v43b_82f220a_e9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1314.v09626b_14362f
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1322.v9ef317a_3e0a_9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:1330.v18e473854496
-
cpe:2.3:a:jenkins:pipeline_maven_integration:2.3.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:2.3.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:2.4.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:2.5.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.4
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.5
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.6
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.0.7
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.1.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.10.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.11.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.11.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.11.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.2.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.2.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.3.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.3.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.3.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.4.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.4.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.4.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.4.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.10
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.11
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.12
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.13
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.14
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.15
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.4
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.5
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.6
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.7
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.8
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.5.9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.10
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.11
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.12
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.13
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.14
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.15
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.4
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.5
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.6
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.7
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.8
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.6.9
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.7.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.7.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.8.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.8.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.8.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.8.3
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.9.0
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.9.1
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.9.2
-
cpe:2.3:a:jenkins:pipeline_maven_integration:3.9.3