Jenkins Credential binding plugin was found to be prone information -disclosure vulnerability. An attacker can take advantage of this vulnerability and thereby gain access to sensitive information. This may also lead to further attacks.

CVE:

CVE-2019-1010241

Affected versions ;-

Redhat OpenShift Container Platform 4.1
Redhat OpenShift Container Platform 3.9
Redhat OpenShift Container Platform 3.11
Redhat OpenShift Container Platform 3.10
Jenkins Credentials Binding 1.17