CVE-2025-0148

Published Feb 3, 2025

Last updated 2 months ago

CVSS low 2.6

Overview

Description
Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via adjacent network access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
2.6
Impact score
1.4
Exploitability score
1.2
Vector string
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
Severity
LOW

Weaknesses

security@zoom.us
CWE-549

Social media

Hype score
Not currently trending

  1. CVE-2025-0148 Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via ad… https://t.co/rmf7U3S4nO

    @CVEnew

    3 Feb 2025

    422 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References