GHSA-j7r7-7qmf-xq87

Опубликовано: 29 окт. 2025

Источник: github

Github: Прошло ревью

CVSS3: 7.5

Описание

Jenkins SAML Plugin does not implement a replay cache

Jenkins SAML Plugin 4.583.vc68232f7018a_ and earlier does not implement a replay cache.

This allows attackers able to obtain information about the SAML authentication flow between a user’s web browser and Jenkins to replay those requests, authenticating to Jenkins as that user.

SAML Plugin 4.583.585.v22ccc1139f55 implements a replay cache that rejects replayed requests.

Ссылки

Пакеты

Наименование

org.jenkins-ci.plugins:saml

maven

Затронутые версииВерсия исправления

< 4.583.585.v22ccc1139f55

4.583.585.v22ccc1139f55

EPSS

Процентиль: 15%

0.00048

Низкий

7.5 High

CVSS3

CVE ID

CVE-2025-64131

Дефекты

CWE-294

Связанные уязвимости

CVE-2025-64131

CVSS3: 7.5

nvd

3 месяца назад

Jenkins SAML Plugin 4.583.vc68232f7018a_ and earlier does not implement a replay cache, allowing attackers able to obtain information about the SAML authentication flow between a user's web browser and Jenkins to replay those requests, authenticating to Jenkins as that user.

EPSS

Процентиль: 15%

0.00048

Низкий

7.5 High

CVSS3

CVE ID

CVE-2025-64131

Дефекты

CWE-294