HomeDefault status
unaffected
Any version
affected
Description
Jenkins Credentials Binding Plugin 687.v619cb_15e923f and earlier does not properly mask (i.e., replace with asterisks) credentials present in exception error messages that are written to the build log.
Product status
Any version
References
www.openwall.com/lists/oss-security/2025/07/09/4
www.jenkins.io/security/advisory/2025-07-09/ (Jenkins Security Advisory 2025-07-09)