Vulnerabilities

CVE-2026-42525

by Fred · 29/04/2026

Jenkins Microsoft Entra ID (previously Azure AD) Plugin 666.v6060de32f87d and earlier does not restrict the redirect URL after login, allowing attackers to perform phishing attacks.

More information : https://www.jenkins.io/security/advisory/2026-04-29/#SECURITY-3760

Similar

Tags: Cybersecurity Alert