CNNVD-202510-4017 Information
CNNVD ID
CNNVD-202510-4017
Related CVE
- CNNVD Published: 2025-10-29
Description (Chinese)
Jenkins Extensible Choice Parameter Plugin是Jenkins开源的一个参数构建插件。 Jenkins Extensible Choice Parameter Plugin 239.v5f5c278708cf及之前版本存在安全漏洞,该漏洞源于容易受到跨站请求伪造攻击,可能导致执行沙箱Groovy代码。
Description (English)
Jenkins Extensible Choice Parameter Plugin is a parameter construction plugin for the Jenkins open source. Jenkins Extensible Choice Parameter Plugin 239.v5f5c278708cf and previous versions have security gaps that stem from the vulnerability of cross-site requests for false attacks that could lead to the implementation of the Sandbox Groovy code.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Jenkins
Published
2025-10-29
Last Modified
2026-02-24
References
https://www.jenkins.io/security/advisory/2025-10-29/#SECURITY-3583 https://access.redhat.com/security/cve/cve-2025-64133
Patch
https://www.jenkins.io/security/advisory/2025-10-29/#SECURITY-3583
Share on: