CyberRota
← Ana sayfaya dön

CVE-2026-57307

MEDIUM · CVSS 4.2 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-24T14:17:36.770 · Çekilme zamanı: 2026-06-30T18:31:31.350493+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-57307
Severity
MEDIUM
CVSS
4.2
EPSS
%0.14
Jenkins

Orijinal NVD Açıklaması

A missing permission check in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.