Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentJenkinsVULNRICHMENT:CVE-2024-39460
HistoryJun 26, 2024 - 5:06 p.m.

CVE-2024-39460

2024-06-2617:06:27
jenkins
github.com
6
jenkins
bitbucket
oauth
access token
build log

AI Score

6.8

Confidence

High

EPSS

0

Percentile

9.1%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some cases.

CNA Affected

[
  {
    "vendor": "Jenkins Project",
    "product": "Jenkins Bitbucket Branch Source Plugin",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "maven",
        "lessThanOrEqual": "886.v44cf5e4ecec5"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Related

github 1
cve 1
cvelist 1
nvd 1
osv 1
veracode 1
redhatcve 1
nessus 1
github
github
Bitbucket OAuth access token exposed in the build log by Bitbucket Branch Source Plugin
2024-06-26 18:30:28
cve
cve
CVE-2024-39460
2024-06-26 17:15:27
cvelist
cvelist
CVE-2024-39460
2024-06-26 17:06:27
nvd
nvd
CVE-2024-39460
2024-06-26 17:15:27
osv
osv
Bitbucket OAuth access token exposed in the build log by Bitbucket Branch Source Plugin
2024-06-26 18:30:28
veracode
veracode
Insertion Of Sensitive Information Into Log File
2024-06-27 07:34:23
redhatcve
redhatcve
CVE-2024-39460
2024-06-27 04:23:46
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2024-06-26)
2024-06-26 00:00:00

AI Score

6.8

Confidence

High

EPSS

0

Percentile

9.1%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-39460
github1cve1cvelist1nvd1osv1veracode1redhatcve1nessus1