Unmasked Credentials Vulnerability in Jenkins NS-ND Integration Performance Publisher Plugin

Unmasked Credentials Vulnerability in Jenkins NS-ND Integration Performance Publisher Plugin

CVE-2023-33000 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.149 and earlier does not mask credentials displayed on the configuration form, increasing the potential for attackers to observe and capture them.

Learn more about our Web Application Penetration Testing UK.