VYPR

Maven package

io.jenkins.plugins/byteguard-build-actions

pkg:maven/io.jenkins.plugins/byteguard-build-actions

Vulnerabilities (2)

  • CVE-2025-64145Oct 29, 2025
    affected <= 1.0

    Jenkins ByteGuard Build Actions Plugin 1.0 does not mask API tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them.

  • CVE-2025-64144Oct 29, 2025
    affected <= 1.0

    Jenkins ByteGuard Build Actions Plugin 1.0 stores API tokens unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Item/Extended Read permission, or access to the Jenkins controller file system.