Jenkins Multiple Plugin Vulnerability Advisory: RCE, LFI, and XSS
Security AdvisoryUnknownJenkins
Affected:
- LDAP plugin <= 807.v7d7de30930cf
- Active Directory plugin <= 2.41
- Email Extension plugin <= 1933.v45cec755423f
- Pipeline: Groovy Libraries plugin <= 797.v90ea_a_9b_e45a_0
- Credentials Binding plugin <= 720.v3f6decef43ea_
Fixed in:
- LDAP plugin >= 807.809.vd3a_4e5e4ec98
- Active Directory plugin >= 2.41.1
- Email Extension plugin >= 1933.1935.v276319e3cc47
- Pipeline: Groovy Libraries plugin >= 798.v5cc688825312
- Credentials Binding plugin >= 725.ve52b_2328a_fde
Referenced CVEs: CVE-2026-48916 CVE-2026-48917
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from www.jenkins.io, cleaned by our LLM pipeline, and translated to English. View original.