CVE-2025-0148

CVSS 3.1 Score 2.6 of 10 (low)

Details

Published Feb 3, 2025

CWE ID 549

Summary

CVE-2025-0148 is a vulnerability affecting the Zoom Jenkins Marketplace plugin before version 1.6. This issue involves a missing password field masking feature, which exposes user input in plaintext. An unauthenticated attacker with adjacent network access can capitalize on this issue to gain insight into sensitive information. The lack of proper masking puts user credentials and other sensitive data at risk, emphasizing the importance of addressing this vulnerability promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3CZ7AK
https://www.cve.org/CVERecord?id=CVE-2025-0148
https://nvd.nist.gov/vuln/detail/CVE-2025-0148

Back to Vulnerability Database

CVE-2025-0148

CVSS 3.1 Score 2.6 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations