CVE-2025-53655 Information

Description

Jenkins Statistics Gatherer Plugin 2.0.3 and earlier does not mask the AWS Secret Key on the global configuration form increasing the potential for attackers to observe and capture it.

Reference

https://www.jenkins.io/security/advisory/2025-07-09/#SECURITY-3554

Related CNNVD

CNNVD-202507-1320 (Published: 2025-07-09)