Количество 2
Количество 2
CVE-2025-68925
27 дней назад
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, the code doesn't validate that the JWT header specifies "alg":"RS256". This vulnerability is fixed in 2.2.
CVSS3: 5.3
EPSS: Низкий
GHSA-5pq9-5mpr-jj85
27 дней назад
Jervis Has a JWT Algorithm Confusion Vulnerability
CVSS3: 5.3
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-68925 Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, the code doesn't validate that the JWT header specifies "alg":"RS256". This vulnerability is fixed in 2.2. | CVSS3: 5.3 | 0% Низкий | 27 дней назад |
| GHSA-5pq9-5mpr-jj85 Jervis Has a JWT Algorithm Confusion Vulnerability | CVSS3: 5.3 | 0% Низкий | 27 дней назад |
Уязвимостей на страницу
20