NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-57299	Missing permission checks in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allow attackers with Overall/Read permission to ...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57297	A missing permission check in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allows attackers with Overall/Read permission t...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57295	A cross-site request forgery (CSRF) vulnerability in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers to connect to an a...	2026-06-24	5.4	NETWORK	MEDIUM	NVD
CVE-2026-57294	A missing permission check in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers with Overall/Read permission to connect t...	2026-06-24	5.4	NETWORK	MEDIUM	NVD
CVE-2026-57290	A cross-site request forgery (CSRF) vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b_84449 and earlier allows attackers to overwrite the g...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57289	Jenkins Bitbucket Push and Pull Request Plugin 3.3.8 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections ...	2026-06-24	4.8	NETWORK	MEDIUM	NVD
CVE-2026-57288	Jenkins Active Directory Plugin 2.41.1 and earlier does not escape the user name before building the LDAP search filter in the Windows native (ADSI) a...	2026-06-24	3.7	NETWORK	LOW	NVD
CVE-2026-57287	Jenkins Job Configuration History Plugin 1356.ve360da_6c523a_ and earlier does not redact the encrypted values of secrets when displaying historical j...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57286	A missing permission check in Jenkins Git Parameter Plugin 462.vdcf3df2ed2ca_ and earlier allows attackers with Item/Read permission to obtain informa...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57285	A missing permission check in Jenkins GitHub Branch Source Plugin 1967.1969.v205fd594c821 and earlier allows attackers with Overall/Read permission to...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57284	Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through the Pipeline Snippet Gener...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57283	A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows attackers to instantiate ty...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57282	Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a generated SSH wrapper sc...	2026-06-24	5.0	NETWORK	MEDIUM	NVD
CVE-2026-57281	Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annotations carrying an extensions member, all...	2026-06-24	7.5	NETWORK	HIGH	NVD
CVE-2026-57280	Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not intercept the implicit type casts applied to the elements of typed for-each loo...	2026-06-24	8.8	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.