Vulnerabilities > Jenkins > Azure KEY Vault
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-12 | CVE-2023-30514 | Cleartext Transmission of Sensitive Information vulnerability in Jenkins Azure KEY Vault Jenkins Azure Key Vault Plugin 187.va_cd5fecd198a_ and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled. | 7.5 |
| 2020-11-04 | CVE-2020-2313 | Unspecified vulnerability in Jenkins Azure KEY Vault A missing permission check in Jenkins Azure Key Vault Plugin 2.0 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. | 4.3 |