CVE-2024-28154

Summary

Jenkins MQ Notifier Plugin 1.4.0 and earlier logs potentially sensitive build parameters as part of debug information in build logs by default.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins MQ Notifier Plugin0 <= 1.4.0affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References