logo

Jenkins Patches 22 Plugin Vulnerabilities, Five Flaws Remain Unfixed

ID: 26c1c350-aa14-5abc-b976-c0f65a640aea

STIX ID: report--26c1c350-aa14-5abc-b976-c0f65a640aea

Feed Name: securityonline.info

Threat Score
72/100

Date Published: 2026-06-25

Date Updated: 2026-06-25

Author: Do Son

...
...

This advisory describes 22 vulnerabilities in 18 Jenkins plugins, including sandbox bypasses enabling controller remote code execution, file-read/RCE bugs, and widespread permission/CSRF issues; most have fixes but five remain unpatched, and administrators are urged to update plugins, restrict access, or remove affected plugins.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.