Multiple security vulnerabilities have been identified in various Jenkins plugins including Active Directory Plugin, AppSpider Plugin, Bitbucket OAuth Plugin, buildgraph-view Plugin, Credentials Binding Plugin, Email Extension Plugin, GitHub Integration Plugin, Job Import Plugin, LDAP Plugin, Pipeline: Groovy Libraries Plugin, and Multijob Plugin. These affect versions prior to specified fixed versions and require updates to mitigate potential security risks.
| Vendor | Product | Versions |
|---|---|---|
| jenkins | jenkins plugins | Active Directory Plugin <= 2.4.1, AppSpider Plugin <= 1.0.17, Bitbucket OAuth Plugin <= 0.17, buildgraph-view Plugin <= 1.8, Credentials Binding Plugin <= 720.v3f6decef43ea_, Email Extension Plugin <= 1933.v45cec755423f, GitHub Integration Plugin <= 0.7.3, Job Import Plugin <= 143.v044a_2e819b_27, LDAP Plugin <= 807.v7d7de30930cf, Pipeline: Groovy Libraries Plugin <= 797.v90ea_a_9b_e45a_0, Multijob Plugin <= 662.vd2e0001f6b_b_d |
