CVE-2023-27904
maven/org.jenkins-ci.main/jenkins-core
Generation of Error Message Containing Sensitive Information
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier prints an error stack trace on agent-related pages when agent connections are broken, potentially revealing information about Jenkins configuration that is otherwise inaccessible to attackers.
All versions after 2.375.4 before 2.394
Upgrade to version 2.394 or above.
2023-03-16
source |