VYPR
Low severity2.6GHSA Advisory· Published Feb 3, 2025· Updated Apr 15, 2026

CVE-2025-0148

CVE-2025-0148

Description

Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via adjacent network access.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
io.jenkins.plugins:zoomMaven
< 1.61.6

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

1