CNNVD-202509-327 Information
Sep 03, 2025
cve
CNNVD ID
CNNVD-202509-327
Related CVE
- CNNVD Published: 2025-09-03
Description (Chinese)
Jenkins OpenTelemetry Plugin是Jenkins开源的一款监控插件。 Jenkins OpenTelemetry Plugin 3.1543.v8446b_92b_cd64及之前版本存在安全漏洞,该漏洞源于缺少权限检查,可能导致凭据泄露。
Description (English)
Jenkins OpenTelemetry Plugin is an open-source monitoring plugin for Jenkins. Jenkins OpenTelemetry Plugin 3.1543.v8446b 92b cd64 and earlier versions had a security loophole, which stemmed from a lack of access checks and could lead to the disclosure of evidence.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Jenkins
Published
2025-09-03
Last Modified
2026-02-24
References
https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3602 https://vigilance.fr/vulnerability/Jenkins-Plugins-multiple-vulnerabilities-dated-03-09-2025-48114
Patch
https://plugins.jenkins.io/opentelemetry/
Share on: