Jenkins < 2.89.2 / 2.95 Multiple Vulnerabilities

Language:

Version 1.11 Oct 30, 2025, 2:57 PM CVSS metrics ("CVSSv3 score" set to 8.1) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H") CVSSv3 score source (changed from "manual" to none) Exploit attributes ("Exploit available" set to "False") Plugin Feed: 202510301457
Version 1.10 Feb 18, 2025, 11:54 PM Plugin metadata (CVSS 3 Change AC:H --> AC:L where needed) Plugin Feed: 202502182354
Version 1.9 Jun 5, 2024, 10:55 AM Required Scan configuration ("Enable cgi scanning" set to "True") Plugin Feed: 202406051055

* Changelogs are generally available for changes made after Nov 1, 2022