Vulnerability Details CVE-2024-9453
A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if they have access to sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2024-9453
-
cpe:2.3:a:jenkins:jenkins:-
-
cpe:2.3:a:redhat:openshift_developer_tools_and_services:-