Vulnerabilities

CVE-2025-67635

by Fred · 10/12/2025

Jenkins 2.540 and earlier, LTS 2.528.2 and earlier does not properly close HTTP-based CLI connections when the connection stream becomes corrupted, allowing unauthenticated attackers to cause a denial of service.

More information : https://www.jenkins.io/security/advisory/2025-12-10/#SECURITY-3630

Similar

Tags: Cybersecurity Alert