Zoom Jenkins bot plugin - Cleartext Storage of Sensitive Information

  • ZSB-25001
  • CVE-2025-0142
  • Medium
  • 4.3
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Cleartext storage of sensitive information in the Zoom Jenkins bot plugin before version 1.4 may allow an authenticated user to conduct a disclosure of information via network access.

 

Users can update to the latest version at  https://plugins.jenkins.io/zoom/releases/.  

  • Zoom Jenkins bot plugin before version 1.4

Reported by Jenkins CVE Numbering Authority.

Revision Date Description
1.1 01/30/2025

Corrected version number from 1.6 to 1.4.
1.0 01/14/2025

Initial publication.