Vulnerabilities

CVE-2025-53652

by Fred · 09/07/2025

Jenkins Git Parameter Plugin 439.vb_0e46ca_14534 and earlier does not validate that the Git parameter value submitted to the build matches one of the offered choices, allowing attackers with Item/Build permission to inject arbitrary values into Git parameters.

More information : https://www.jenkins.io/security/advisory/2025-07-09/#SECURITY-3419

Similar

Tags: Cybersecurity Alert