Vulnerabilities > CVE-2024-28154 - Unspecified vulnerability in Jenkins MQ Notifier

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

NVD

Published: 2024-03-06

Updated: 2025-01-19

Summary

Jenkins MQ Notifier Plugin 1.4.0 and earlier logs potentially sensitive build parameters as part of debug information in build logs by default.

Part	Description	Count
Application	Jenkins Jenkins MQ Notifier - Jenkins MQ Notifier 1.0 Jenkins MQ Notifier 1.1 Jenkins MQ Notifier 1.1.1 Jenkins MQ Notifier 1.1.2 Jenkins MQ Notifier 1.1.3 Jenkins MQ Notifier 1.1.4 Jenkins MQ Notifier 1.1.5 Jenkins MQ Notifier 1.2.0 Jenkins MQ Notifier 1.2.1 Jenkins MQ Notifier 1.2.2 Jenkins MQ Notifier 1.2.3 Jenkins MQ Notifier 1.2.4 Jenkins MQ Notifier 1.2.5 Jenkins MQ Notifier 1.2.6 Jenkins MQ Notifier 1.2.7 Jenkins MQ Notifier 1.2.8 Jenkins MQ Notifier 1.2.9 Jenkins MQ Notifier 1.2.10 Jenkins MQ Notifier 1.3.0 Jenkins MQ Notifier 1.3.1 Jenkins MQ Notifier 1.4.0	24