Количество 5
Количество 5
CVE-2025-27625
In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as part of scheme-relative redirects.
CVE-2025-27625
In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as part of scheme-relative redirects.
GHSA-8hmv-92wm-39ch
Jenkins Open Redirect vulnerability
BDU:2025-04959
Уязвимость сервера автоматизации Jenkins, связанная с переадресацией URL на ненадежный сайт, позволяющая нарушителю перенаправлять пользователей на произвольный URL-адрес
ROS-20250417-03
Множественные уязвимости jenkins
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-27625 In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as part of scheme-relative redirects. | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-27625 In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as part of scheme-relative redirects. | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
| GHSA-8hmv-92wm-39ch Jenkins Open Redirect vulnerability | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
 | BDU:2025-04959 Уязвимость сервера автоматизации Jenkins, связанная с переадресацией URL на ненадежный сайт, позволяющая нарушителю перенаправлять пользователей на произвольный URL-адрес | CVSS3: 4.3 | 0% Низкий | 9 месяцев назад |
 | ROS-20250417-03 Множественные уязвимости jenkins | CVSS3: 5.4 | 8 месяцев назад |
Уязвимостей на страницу