- Vulnerability/
- https://seclists.org/oss-sec/2025/q2/146
14/5/2025
14/5/2025
https://seclists.org/oss-sec/2025/q2/146: Multiple vulnerabilities in Jenkins plugins
First published: Wed May 14 2025(Updated: )
Credit: Kevin Guerroudj kguerroudj@cloudbees.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Jenkins OpenID Connect Provider Plugin | <96.vee8ed882ec4d | |
| Jenkins Health Advisor | <374.v194b_d4f0c8c8 | |
| Cadence vManager Plugin | <4.0.1-286.v9e25a_740b_a_48 | |
| Jenkins DingTalk Plugin | <2.7.3 | |
| WSO2 Oauth Plugin | <1.0 | |
| Cadence vManager Plugin | <4.0.1-288.v8804b_ea_a_cb_7f | |
| Jenkins Health Advisor | <374.376.v3a_41a_a_142efe | |
| Jenkins OpenID Connect Provider Plugin |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/oss-sec
- source/oss-sec
- collector/oss-sec-post
- anchor-related/CVE-2025-47884
- anchor-related/CVE-2025-47885
- anchor-related/CVE-2025-47886
- anchor-related/CVE-2025-47887
- anchor-related/CVE-2025-47888
- anchor-related/CVE-2025-47889
- agent/title
- agent/last-modified-date
- agent/author
- agent/references
- agent/source
- agent/body
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/jenkins
- canonical/jenkins openid connect provider plugin
- canonical/jenkins health advisor
- canonical/cadence vmanager plugin
- canonical/jenkins dingtalk plugin
- canonical/wso2 oauth plugin