jenkins
Security Risk Profile
38
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 1000 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from January 13, 2021 to present
1000
Total CVEs
320
Critical+High
2
Exploited
129
Unpatched
Threat Assessment
Avg CVSS
6.4
Base severity
Avg EPSS
1%
Exploit probability
Unpatched
129
Critical/High
Risk Level
38/100
low
⚠️ 2 Active Exploits⚡ 1 Zero-Days📈 8 in Last 30 Days
Severity Distribution
Critical
58High
262Medium
608Low
6Exploit Likelihood
>50% chance
020-50%
15-20%
0<5%
69Age Distribution
Common Weaknesses (CWE)
1
CSRF
182
2
XSS
166
3
Path Traversal
52
4
XEE
42
5
Infoleak
16
Most Affected Products
1. redhat/jenkins297
2. Jenkins Jenkins236
3. maven/org.jenkins-ci.main:jenkins-core147
4. Jenkins Pipeline\29
5. redhat/jenkins LTS28
Recent Vulnerabilities
See more →CVE-2026-42525
CVSS 4.3medium
4/29/2026🔧 No Patch
CVE-2026-42523
CVSS 9.0critical
4/29/2026🔧 No Patch
CVE-2026-42524
CVSS 8.0high
4/29/2026🔧 No Patch
CVE-2026-42522
CVSS 4.3medium
4/29/2026🔧 No Patch
CVE-2026-42521
CVSS 6.5medium
4/29/2026🔧 No Patch
CVE-2026-42520
CVSS 7.5high
4/29/2026🔧 No Patch
CVE-2026-42519
CVSS 4.3medium
4/29/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/273
unknown
Multiple vulnerabilities in Jenkins plugins
4/29/2026🔧 No Patch
CVE-2026-33004
CVSS 4.3EPSS 0%medium
3/18/2026🔧 No Patch
CVE-2026-33002
CVSS 7.5EPSS 0%high
3/18/2026
Monitor jenkins in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.