CVE-2024-39460

Summary

Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some cases.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins Bitbucket Branch Source Plugin0 <= 886.v44cf5e4ecec5affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References