Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Jenkins JenkinsA missing permission check in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers wi…

Risk 24
Severity
4.3
First published (updated )
CVE-2025-67636

Jenkins JenkinsA missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers wi…

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2025-31721

Jenkins JenkinsA missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers wi…

Risk 17
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2025-31720

Jenkins JenkinsIn Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) chara…

Risk 16
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2025-27625

Jenkins JenkinsCSRF

Risk 25
Severity
5.4
EPSS
0.02%
First published (updated )
CVE-2025-27624
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins JenkinsJenkins 2.499 and earlier, LTS 2.492.1 and earlier does not redact encrypted values of secrets when …

Risk 17
Severity
4.3
EPSS
0.01%
First published (updated )
CVE-2025-27623

Jenkins JenkinsJenkins 2.499 and earlier, LTS 2.492.1 and earlier does not redact encrypted values of secrets when …

Risk 17
Severity
4.3
EPSS
0.01%
First published (updated )
CVE-2025-27622

maven/org.jenkins-ci.main:jenkins-coreIf an attempt is made to create an item of a type prohibited by `ACL#hasCreatePermission2` or `TopLe…

Risk 24
Severity
4.3
First published (updated )
CVE-2024-47804

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error…

Risk 24
Severity
4.3
First published (updated )
CVE-2024-47803

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.470 and earlier, LTS 2.452.3 and earlier does not perform a permission check in an HTTP en…

Risk 48
Severity
6.3
First published (updated )
CVE-2024-43045
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.50 through 2.423 (both inclusive), LTS 2.60.1 through 2.414.1 (both inclusive) does not ex…

Risk 24
Severity
4.3
First published (updated )
CVE-2023-43494

redhat/jenkinsInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2023-27904

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.393 and earlier, LTS 2.375.3 and earlier creates a temporary file in the default temporary…

Risk 30
Severity
4.4
First published (updated )
CVE-2023-27903

maven/org.jenkins-ci.main:jenkins-coreJenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job worksp…

Risk 24
Severity
4.3
First published (updated )
CVE-2023-27902

Jenkins Compuware Source Code Download For Endevor\, Pds\, And Ispw JenkinsJenkins Compuware Source Code Download for Endevor, PDS, and ISPW Plugin 2.0.12 and earlier implemen…

Risk 28
Severity
5.3
First published (updated )
CVE-2022-43423
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/com.compuware.jenkins:compuware-xpediter-code-coverageJenkins Compuware Xpediter Code Coverage Plugin 1.0.7 and earlier implements an agent/controller mes…

Risk 28
Severity
5.3
First published (updated )
CVE-2022-43424

Jenkins Compuware Topaz Utilities JenkinsJenkins Compuware Topaz Utilities Plugin 1.0.8 and earlier implements an agent/controller message th…

Risk 28
Severity
5.3
First published (updated )
CVE-2022-43422

Jenkins JenkinsXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2022-34173

Jenkins JenkinsXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2022-34172

Jenkins JenkinsXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2022-34171
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Jenkins Semantic Versioning JenkinsJenkins Semantic Versioning Plugin 1.13 and earlier does not restrict execution of an controller/age…

Risk 38
Severity
6.5
First published (updated )
CVE-2022-27201

maven/org.jenkins-ci.main:jenkins-coreCSRF

Risk 22
Severity
4.3
First published (updated )
CVE-2022-20612

Jenkins JenkinsPath Traversal

Risk 39
Severity
6.5
First published (updated )
CVE-2021-21683

Jenkins JenkinsJenkins 2.314 and earlier, LTS 2.303.1 and earlier accepts names of jobs and other entities with a t…

Risk 46
Severity
6.3
First published (updated )
CVE-2021-21682

redhat/jenkinsIncorrect Authorization vulnerability was found in Jenkins. Users with Item/Cancel permission are ab…

Risk 23
Severity
4.3
First published (updated )
CVE-2021-21670
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/jenkinsInput Validation

Risk 23
Severity
4.3
First published (updated )
CVE-2021-21639

redhat/jenkinsInput Validation

Risk 23
Severity
4.3
First published (updated )
CVE-2021-21640

redhat/jenkinsRace Condition, Path Traversal

Risk 33
Severity
5.3
First published (updated )
CVE-2021-21615

redhat/jenkinsJenkins 2.274 and earlier, LTS 2.263.1 and earlier does not correctly match requested URLs to the li…

Risk 28
Severity
5.3
First published (updated )
CVE-2021-21609

redhat/jenkinsXSS

Risk 35
Severity
5.4
First published (updated )
CVE-2021-21603
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203