Insecure Credential Logging in Jenkins Kubernetes Plugin

Insecure Credential Logging in Jenkins Kubernetes Plugin

CVE-2023-30513 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled.

Learn more about our Cis Benchmark Audit For Kubernetes.