Maven package
com.cloudbees.jenkins.plugins/kubernetes-credentials-provider
pkg:maven/com.cloudbees.jenkins.plugins/kubernetes-credentials-provider
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-24425 | — | < 1.209.v862c6e5fb | 1.209.v862c6e5fb | Jan 24, 2023 | Jenkins Kubernetes Credentials Provider Plugin 1.208.v128ee9800c04 and earlier does not set the appropriate context for Kubernetes credentials lookup, allowing attackers with Item/Configure permission to access and potentially capture Kubernetes credentials they are not entitled |
- CVE-2023-24425Jan 24, 2023affected < 1.209.v862c6e5fbfixed 1.209.v862c6e5fb
Jenkins Kubernetes Credentials Provider Plugin 1.208.v128ee9800c04 and earlier does not set the appropriate context for Kubernetes credentials lookup, allowing attackers with Item/Configure permission to access and potentially capture Kubernetes credentials they are not entitled