CVE-2023-32983

Jenkins Ansible Plugin job configuration form does not mask variables in maven/org.jenkins-ci.plugins/ansible

Identifiers

CVE-2023-32983, GHSA-97wp-63wq-hfwh

Package Slug

maven/org.jenkins-ci.plugins/ansible

Vulnerability

Jenkins Ansible Plugin job configuration form does not mask variables

Description

Jenkins Ansible Plugin 204.v8191fd551eb_f and earlier does not mask extra variables displayed on the configuration form, increasing the potential for attackers to observe and capture them.

Affected Versions

All versions before 205.v4cb

Solution

Upgrade to version 205.v4cb or above.

Last Modified

2023-05-17

source