J

Jenkins Security Vulnerabilities (CVE)

Explore vulnerabilities and security advisories affecting Jenkins products.

3 known CVE vulnerabilities tracked

Critical
0
High
0
Medium
3
Low
0
None
0

Vulnerabilities By Year

3
2026

Products Affected

Ldap 2 Job Import 1

All Jenkins CVEs

Recent Highest Score Oldest
CVE-2026-48926
4.3 medium

Jenkins Job Import Plugin 143.v044a_2e819b_27 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.

Job Import May 27, 2026
CVE-2026-48917
6.6 medium

Jenkins LDAP Plugin 807.v7d7de30930cf and earlier deserializes data from LDAP referrals without validation.

Ldap May 27, 2026
CVE-2026-48916
6.6 medium

Jenkins LDAP Plugin 807.v7d7de30930cf and earlier follows LDAP referrals.

Ldap May 27, 2026