CVE-2025-47887 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Missing permission checks in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers with Overall/Read permission to connect to…
Medium CVSS: 4.3

CVE-2025-47887

Missing permission checks in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password.
Vendor
Jenkins
Product
Cadence Vmanager
CWE
CWE-862
Yayın Tarihi
2025-05-14 21:15:59
Güncelleme
2025-06-12 13:33:00
Source Identifier
jenkinsci-cert@googlegroups.com
KEV Date Added
-

Kategoriler

CWE-862 Cadence Vmanager MEDIUM Jenkins 2025

Referanslar

https://www.jenkins.io/security/advisory/2025-05-14/#SECURITY-3548