Jenkins Security Advisory: Multiple Plugin Vulnerabilities (XXE/CSRF/XSS/Creds)

jenkins.io 2025-11-11查看中文 →

Security AdvisorySECURITY-2019-12-17HighJenkins

Affected:

Maven Release Plugin
Gerrit Trigger Plugin
Build Failure Analyzer Plugin
Pipeline Aggregator View Plugin
Rundeck Plugin

Fixed in:

Build Failure Analyzer Plugin: 1.24.2
Gerrit Trigger Plugin: 2.30.2
Maven Release Plugin: 0.16.2
Pipeline Aggregator View Plugin: 1.9
Redgate SQL Change Automation Plugin: 2.0.4

Referenced CVEs: CVE-2019-16556

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from jenkins.io, cleaned by our LLM pipeline, and translated to English. View original.

Offline Archive

Offline screenshot & PDF are Pro-exclusive