Veracode Scan Jenkins Plugin before 23.3.19.0, when the "Connect using proxy" option is enabled and configured with proxy credentials and when the Jenkins global system setting debug is enabled and when a scan is configured for remote agent jobs, allows users (with access to view the job log) to discover proxy credentials.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-03-28T00:00:00
Updated: 2024-08-02T11:32:11.410Z
Reserved: 2023-02-13T00:00:00
Link: CVE-2023-25721
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-03-28T20:15:11.093
Modified: 2024-11-21T07:50:00.257
Link: CVE-2023-25721
Redhat
No data.