Jenkins Host key reuse in SSH build agent Docker images (CVE-2025-32754 and CVE-2025-32755)
CVE numbers CVE-2025-32754 and CVE-2025-32755. In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation
Read MoreJenkins
Jenkins Token Macro Plug-In XML External Entities Vulnerability [CVE-2019-10337]
CVE Number – CVE-2019-10337 A vulnerability in the Jenkins Token Macro plug-in could allow an unauthenticated, remote attacker to cause a denial
Read More
Jenkins Credentials Plug-In Sensitive Information Disclosure Vulnerability [CVE-2019-10320]
CVE Number – CVE-2019-10320 A vulnerability in the Jenkins Credentials plug-in could allow an authenticated, remote attacker to access sensitive information on
Read More
Jenkins Pipeline Remote Loader Plug-In Arbitrary Methods Vulnerability [CVE-2019-10328]
CVE Number – CVE-2019-10328 A vulnerability in the Jenkins Pipeline Loader plug-in could allow an authenticated, remote attacker to execute arbitrary methods
Read More
Jenkins Crafted Existing User Session Improper Authorization Vulnerability [CVE-2019-1003003]
CVE Number – CVE-2019-1003003 A vulnerability in Jenkins could allow an authenticated, remote attacker to gain unauthorized access to a
Read More
Jenkins Stapler Web Framework Arbitrary Code Execution Vulnerability [CVE-2018-1000861]
CVE Number – CVE-2018-1000861 A vulnerability in the Stapler web framework of Jenkins could allow an unauthenticated, remote attacker to
Read More