CVE-2025-0148

Published Feb 3, 2025

Last updated 19 days ago

CVSS low 2.6

Overview

Description
Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via adjacent network access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
2.6
Impact score
1.4
Exploitability score
1.2
Vector string
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
Severity
LOW

Weaknesses

security@zoom.us
CWE-549

Social media

Hype score
Not currently trending

  1. CVE-2025-0148 Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via ad… https://t.co/rmf7U3S4nO

    @CVEnew

    3 Feb 2025

    422 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References