Jenkins多插件安全公告(RCE/任意文件读取等)
Security AdvisoryHighJenkins
Affected:
- Jenkins LDAP Plugin <= 807.v7d7de30930cf
- Jenkins Active Directory Plugin <= 2.41
- Jenkins Email Extension Plugin <= 1933.v45cec755423f
- Jenkins Pipeline: Groovy Libraries Plugin <= 797.v90ea_a_9b_e45a_0
- Jenkins Credentials Binding Plugin <= 720.v3f6decef43ea_
Fixed in:
- Jenkins LDAP Plugin >= 807.809.vd3a_4e5e4ec98
- Jenkins Active Directory Plugin >= 2.41.1
- Jenkins Email Extension Plugin >= 1933.1935.v276319e3cc47
- Jenkins Pipeline: Groovy Libraries Plugin >= 798.v5cc688825312
- Jenkins Credentials Binding Plugin >= 725.ve52b_2328a_fde
Referenced CVEs: CVE-2026-48924
文章内图片已隐藏以节省流量 · 升级 Pro 后可见图片及离线存档
本文由本平台从 www.jenkins.io 自动抓取,经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。