Medium severity6.5NVD Advisory· Published Jul 4, 2025· Updated Jun 17, 2026
CVE-2024-9453
CVE-2024-9453
Description
A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if they have access to sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- Red Hat/OpenShift Developer Tools and Servicesv5cpe:/a:redhat:ocp_tools
- osv-coords8 versionspkg:apk/chainguard/jenkins-2pkg:apk/chainguard/jenkins-2.462pkg:apk/chainguard/jenkins-2.492pkg:apk/chainguard/jenkins-2.504pkg:apk/chainguard/jenkins-2.516pkg:apk/chainguard/jenkins-2.528pkg:apk/wolfi/jenkins-2pkg:bitnami/jenkins
< 0+ 7 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)
- Range: 0
Patches
Vulnerability mechanics
References
2- access.redhat.com/security/cve/CVE-2024-9453nvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.