CVE-2025-53677 Information

Description

Jenkins Xooa Plugin 0.0.7 and earlier does not mask the Xooa Deployment Token on the global configuration form increasing the potential for attackers to observe and capture it.

Reference

https://www.jenkins.io/security/advisory/2025-07-09/#SECURITY-3522

Related CNNVD

CNNVD-202507-1342 (Published: 2025-07-09)