Vulnerability Details CVE-2025-53671
Jenkins Nouvola DiveCloud Plugin 1.08 and earlier does not mask DiveCloud API Keys and Credentials Encryption Keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.2%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-53671
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.0
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.01
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.02
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.03
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.04
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.05
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.06
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.07
-
cpe:2.3:a:jenkins:nouvola_divecloud:1.08