CVE-2024-39460

June 26, 2024, 6:15 p.m.

None
No Score

Description

Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some cases.

Product(s) Impacted

Product Versions
Jenkins Bitbucket Branch Source Plugin
  • ['886.v44cf5e4ecec5 and earlier']

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

http://www.openwall.com/lists/oss-security/2024/06/26/2
https://www.jenkins.io/security/advisory/2024-06-26/#SECURITY-3363

Tags

jenkinsci-cert@googlegroups.com
2024-06-26
CVE-2024-39460

Timeline

Published: June 26, 2024, 5:15 p.m.
Last Modified: June 26, 2024, 6:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

jenkinsci-cert@googlegroups.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.