Vulnerabilities > Jenkins > Azure KEY Vault

DATE CVE VULNERABILITY TITLE RISK
2023-04-12 CVE-2023-30514 Cleartext Transmission of Sensitive Information vulnerability in Jenkins Azure KEY Vault
Jenkins Azure Key Vault Plugin 187.va_cd5fecd198a_ and earlier does not properly mask (i.e., replace with asterisks) credentials in the build log when push mode for durable task logging is enabled.
network
low complexity
jenkins CWE-319
7.5
2020-11-04 CVE-2020-2313 Unspecified vulnerability in Jenkins Azure KEY Vault
A missing permission check in Jenkins Azure Key Vault Plugin 2.0 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
network
low complexity
jenkins
4.3