Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Mon, 18 Aug 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Jenkins
Jenkins jenkins Redhat openshift Developer Tools And Services |
|
CPEs | cpe:2.3:a:jenkins:jenkins:-:*:*:*:-:*:*:* cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Jenkins
Jenkins jenkins Redhat openshift Developer Tools And Services |
Tue, 08 Jul 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 04 Jul 2025 12:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
| |
Metrics |
threat_severity
|
threat_severity
|
Fri, 04 Jul 2025 08:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if they have access to sensitive information. | |
Title | Jenkins-image: sensitive data disclosure when using openshift jenkins image | |
First Time appeared |
Redhat
Redhat ocp Tools |
|
Weaknesses | CWE-532 | |
CPEs | cpe:/a:redhat:ocp_tools | |
Vendors & Products |
Redhat
Redhat ocp Tools |
|
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2025-08-30T21:01:29.380Z
Reserved: 2024-10-03T00:24:06.523Z
Link: CVE-2024-9453

Updated: 2025-07-08T14:19:36.309Z

Status : Analyzed
Published: 2025-07-04T09:15:24.537
Modified: 2025-08-18T19:02:46.957
Link: CVE-2024-9453


No data.