EIP-2026-102385

PRE-CVE

Jenkins 1.633 - Credential Recovery

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102385. PoCs published by The Repo.

AI-analyzed exploit summary This exploit targets an unauthenticated credential recovery vulnerability in Jenkins by extracting encrypted credentials from the credential store and decrypting them using the Groovy scripting engine. It demonstrates the ability to recover plaintext passwords without authentication.

Description

Jenkins 1.633 - Credential Recovery

Exploits (1)

exploitdb WORKING POC

by The Repo · pythonwebappsjava

https://www.exploit-db.com/exploits/38664

View Code ZIP pw:eip

This exploit targets an unauthenticated credential recovery vulnerability in Jenkins by extracting encrypted credentials from the credential store and decrypting them using the Groovy scripting engine. It demonstrates the ability to recover plaintext passwords without authentication.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Jenkins v1.633

No auth needed

Prerequisites: Access to the Jenkins web interface · Credential store must contain stored credentials

MITRE ATT&CK

T1552 - Unsecured Credentials T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026