Fedora Account System
Red Hat Associate
Red Hat Customer
An exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.10.1 and earlier in KubernetesCloud.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins. References: https://jenkins.io/security/advisory/2018-07-30/#SECURITY-1016
OCP 3.11 is shipping kubernetes plugin version 1.12.1 so is not affected by this flaw.