PT-2025-28919 · Jenkins · Jenkins Dead Man'S Snitch Plugin+1
Romuald Moisan
·
Published
2025-07-08
·
Updated
2025-07-18
·
CVE-2025-53667
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Jenkins Dead Man's Snitch Plugin version 0.1
Description:
The Jenkins Dead Man's Snitch Plugin does not mask Dead Man's Snitch tokens displayed on the job configuration form, potentially allowing attackers to observe and capture them.
Recommendations:
Update to a newer version of the Jenkins Dead Man's Snitch Plugin that addresses this issue.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jenkins
Jenkins Dead Man'S Snitch Plugin