CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-30197

Jenkins Zoho QEngine Plugin 1.0.29.vfa_cc23396502 and earlier does not mask the QEngine API Key form field, increasing the potential for attackers to observe and capture it.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.9%

CVSS Severity

CVSS v3 Score 3.1

References

https://www.jenkins.io/security/advisory/2025-03-19/#SECURITY-3511

Products affected by CVE-2025-30197

Jenkins » Zoho Qengine » Version: 1.0.22.vd05b_10b_8f5dd

cpe:2.3:a:jenkins:zoho_qengine:1.0.22.vd05b_10b_8f5dd
Jenkins » Zoho Qengine » Version: 1.0.24.v8a_00da_0756ee

cpe:2.3:a:jenkins:zoho_qengine:1.0.24.v8a_00da_0756ee
Jenkins » Zoho Qengine » Version: 1.0.29.vfa_cc23396502

cpe:2.3:a:jenkins:zoho_qengine:1.0.29.vfa_cc23396502

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-30197

Products

Pricing

Contact Us