nvd-json-data-feeds/CVE-2024/CVE-2024-394xx/CVE-2024-39458.json

{
  "id": "CVE-2024-39458",
  "sourceIdentifier": "jenkinsci-cert@googlegroups.com",
  "published": "2024-06-26T17:15:27.020",
  "lastModified": "2024-06-26T18:15:15.410",
  "vulnStatus": "Received",
  "descriptions": [
    {
      "lang": "en",
      "value": "When Jenkins Structs Plugin 337.v1b_04ea_4df7c8 and earlier fails to configure a build step, it logs a warning message containing diagnostic information that may contain secrets passed as step parameters, potentially resulting in accidental exposure of secrets through the default system log."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "http://www.openwall.com/lists/oss-security/2024/06/26/2",
      "source": "jenkinsci-cert@googlegroups.com"
    },
    {
      "url": "https://www.jenkins.io/security/advisory/2024-06-26/#SECURITY-3371",
      "source": "jenkinsci-cert@googlegroups.com"
    }
  ]
}