Description
Jenkins 2.442 through 2.554 (both inclusive), LTS 2.426.3 through LTS 2.541.2 (both inclusive) performs origin validation of requests made through the CLI WebSocket endpoint by computing the expected origin for comparison using the Host or X-Forwarded-Host HTTP request headers, making it vulnerable to DNS rebinding attacks that allow bypassing origin validation.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
Jenkins Security Advisory 2026-03-18
https://www.jenkins.io/security/advisory/2026-03-18/#SECURITY-3674
Scores
CVSS v3
7.5
EPSS
0.0006
EPSS Percentile
19.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-350
Status
published
Products (7)
jenkins/jenkins
2.426.3 - 2.541.3
jenkins/jenkins
2.442 - 2.555
Jenkins Project/Jenkins
< 2.426.3
Jenkins Project/Jenkins
2.427 - 2.442
Jenkins Project/Jenkins
2.541.3 - 2.541.*
Jenkins Project/Jenkins
2.555
org.jenkins-ci.main/jenkins-core
2.442 - 2.555Maven
Published
Mar 18, 2026
Tracked Since
Mar 18, 2026