Jenkins

1,744 tracked vulnerabilities.

CVE-2026-27100 MEDIUM
Jenkins <=2.550 - Info Disclosure
Feb 18, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-27099 HIGH
Jenkins 2.483-2.550 - Stored XSS
Feb 18, 2026
CVSS 8.0
EPSS 0.00
CVE-2025-67643 MEDIUM
Jenkins Redpen - Pipeline Reporter For Jira - Path Traversal
Dec 10, 2025
CVSS 4.3
EPSS 0.03
CVE-2025-67642 MEDIUM
Jenkins HashiCorp Vault Plugin <371.v884a_4dd60fb_6 - Privilege Esc...
Dec 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-67641 MEDIUM
Jenkins Coverage - XSS
Dec 10, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-67640 MEDIUM
Jenkins Git Client < 6.4.1 - OS Command Injection
Dec 10, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-67639 LOW
Jenkins < 2.528.3 - CSRF
Dec 10, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-67638 MEDIUM
Jenkins < 2.528.3 - Cleartext Storage
Dec 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-67637 MEDIUM
Jenkins < 2.528.3 - Cleartext Storage
Dec 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-67636 MEDIUM
Jenkins < 2.528.3 - Missing Authorization
Dec 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-67635 HIGH
Jenkins < 2.528.3 - Improper Resource Release
Dec 10, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-64150 MEDIUM
Jenkins Publish TO Bitbucket < 0.4 - Missing Authorization
Oct 29, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-64149 MEDIUM
Jenkins Publish TO Bitbucket < 0.4 - CSRF
Oct 29, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-64148 MEDIUM
Jenkins Publish TO Bitbucket < 0.4 - Missing Authorization
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64147 MEDIUM
Jenkins Curseforge Publisher - Missing Encryption
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64146 MEDIUM
Jenkins Curseforge Publisher - Missing Encryption
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64145 MEDIUM
Jenkins Byteguard Build Actions - Missing Encryption
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64144 MEDIUM
Jenkins Byteguard Build Actions - Missing Encryption
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64143 MEDIUM
Jenkins Openshift Pipeline < 1.0.57 - Missing Encryption
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64142 MEDIUM
Jenkins Nexus Task Runner < 0.9.2 - Missing Authorization
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64141 MEDIUM
Jenkins Nexus Task Runner < 0.9.2 - CSRF
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64140 HIGH
Jenkins Azure CLI < 0.9 - OS Command Injection
Oct 29, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-64139 MEDIUM
Jenkins Start Windocks Container < 1.4 - Missing Authorization
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64138 MEDIUM
Jenkins Start Windocks Container < 1.4 - CSRF
Oct 29, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-64137 MEDIUM
Jenkins Themis < 1.4.1 - Missing Authorization
Oct 29, 2025
CVSS 4.3
EPSS 0.00
Products
jenkins 257 pipeline\ 37 script_security 32 blue_ocean 11 git 11 email_extension 10 configuration_as_code 9 active_directory 9 build_failure_analyzer 9 config_file_provider 9 ns-nd_integration_performance_publisher 8 openid_connect_authentication 7 kubernetes 7 openshift_deployer 7 rundeck 7 subversion 7 gitlab 6 github_pull_request_builder 6 pipeline_maven_integration 6 google_compute_engine 6 github_branch_source 6 openid 6 project_inheritance 6 deployment_dashboard 6 credentials_binding 6 gerrit_trigger 6 job_configuration_history 6 amazon_ec2 6 electricflow 6 hashicorp_vault 6
Quick Filters
Critical CVEs With Exploits In CISA KEV