CyberRota
← Ana sayfaya dön

CVE-2026-57289

MEDIUM · CVSS 4.8 EPSS %0.11

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-24T14:17:35.140 · Çekilme zamanı: 2026-06-30T18:31:26.515707+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-57289
Severity
MEDIUM
CVSS
4.8
EPSS
%0.11
Jenkins

Orijinal NVD Açıklaması

Jenkins Bitbucket Push and Pull Request Plugin 3.3.8 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections sending Bearer token authenticated requests to the configured Bitbucket Server endpoint, allowing attackers able to intercept network traffic to capture the token.