CNNVD-202507-396 Information

CNNVD ID

CNNVD-202507-396

Related CVE

CVE-2024-9453

• CNNVD Published: 2025-07-04

Description (Chinese)

Red Hat OpenShift Jenkins是美国红帽（Red Hat）公司的一个自动化构建软件。 Red Hat OpenShift Jenkins存在日志信息泄露漏洞，该漏洞源于日志中未混淆承载令牌，可能导致环境被恶意用户破坏。

Description (English)

Red Hat OpenShift Jenkins is an automated builder for Red Hat. Red Hat OpenShift Jenkins has a leak in log information, which stems from the absence of confusion in logs about the bearing of tokens, which could lead to damage to the environment by malicious users.

Hazard Level

High

Vulnerability Type

日志信息泄露

Affected Vendor

红狮控制

Published

2025-07-04

Last Modified

2026-02-24

References

https://bugzilla.redhat.com/show_bug.cgi?id=2316231 https://access.redhat.com/security/cve/CVE-2024-9453 https://nvd.nist.gov/vuln/detail/CVE-2024-9453