CVE-2025-53650
published 2025-07-09CVE-2025-53650: Jenkins Credentials Binding Plugin 687.v619cb_15e923f and earlier does not properly mask (i.e., replace with asterisks) credentials present in exception error…
high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
Jenkins Credentials Binding Plugin 687.v619cb_15e923f and earlier does not properly mask (i.e., replace with asterisks) credentials present in exception error messages that are written to the build log.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jenkins | apica_loadtest_plugin | — | — |
| jenkins | applitools_eyes_plugin | — | — |
| jenkins | aqua_security_scanner_plugin | — | — |
| jenkins | credentials_binding | <= 687.689.v1a_f775332fc | — |
| jenkins | credentials_binding_plugin | — | — |
| jenkins | git_parameter_plugin | — | — |
| jenkins | html_publisher_plugin | — | — |
| jenkins | ibm_cloud_devops_plugin | — | — |
| jenkins | ifttt_build_notifier_plugin | — | — |
| jenkins | kryptowire_plugin | — | — |
| jenkins | nouvola_divecloud_plugin | — | — |
| jenkins | qmetry_test_management_plugin | — | — |
| jenkins | readyapi_functional_testing_plugin | — | — |
| jenkins | snitch_plugin | — | — |
| jenkins | statistics_gatherer_plugin | — | — |
| jenkins | testsigma_test_plan_run_plugin | — | — |
| jenkins | user1st_utester_plugin | — | — |
| jenkins | vaddy_plugin | — | — |
| jenkins | warrior_framework_plugin | — | — |
| jenkins | xooa_plugin | — | — |
| jenkins_project | jenkins_credentials_binding_plugin | <= 687.v619cb_15e923f | — |