Jenkins Dead Man's Snitch Plugin 0.1 does not mask Dead Man's Snitch tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Jenkins |
|
No data.
References
History
Fri, 18 Jul 2025 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Jenkins
Jenkins dead Man\'s Snitch |
|
| CPEs | cpe:2.3:a:jenkins:dead_man\'s_snitch:0.1:*:*:*:*:jenkins:*:* | |
| Vendors & Products |
Jenkins
Jenkins dead Man\'s Snitch |
Tue, 15 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Wed, 09 Jul 2025 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-522 | |
| Metrics |
cvssV3_1
|
Wed, 09 Jul 2025 15:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Jenkins Dead Man's Snitch Plugin 0.1 does not mask Dead Man's Snitch tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: jenkins
Published: 2025-07-09T15:39:36.655Z
Updated: 2025-07-09T19:14:02.674Z
Reserved: 2025-07-08T07:51:59.763Z
Link: CVE-2025-53667
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2025-07-09T16:15:26.143
Modified: 2025-07-18T18:43:53.230
Link: CVE-2025-53667
Redhat
No data.