CVE-2025-53661

Summary

Jenkins Testsigma Test Plan run Plugin 1.6 and earlier does not mask Testsigma API keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins Testsigma Test Plan run Plugin0 <= 1.6affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References