FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

jenkins -- multiple vulnerabilities

Affected packages
jenkins < 2.500
jenkins-lts < 2.492.2

Details

VuXML ID cb98d018-f9f5-11ef-a398-00e081b7aa2d
Discovery 2025-03-05
Entry 2025-03-05

Jenkins Security Advisory:

Description

(Medium) SECURITY-3495 / CVE-2025-27622

Encrypted values of secrets stored in agent configuration revealed to users with Agent/Extended Read permission

Description

(Medium) SECURITY-3496 / CVE-2025-27623

Encrypted values of secrets stored in view configuration revealed to users with View/Read permission

Description

(Medium) SECURITY-3498 / CVE-2025-27624

CSRF vulnerability

Description

(Medium) SECURITY-3501 / CVE-2025-27625

Open redirect vulnerability

[source]

References

CVE Name CVE-2025-27622
CVE Name CVE-2025-27623
CVE Name CVE-2025-27624
CVE Name CVE-2025-27625
URL https://www.jenkins.io/security/advisory/2025-03-05/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.