CVE-2025-67636

Name
CVE-2025-67636
Description
A missing permission check in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers with View/Read permission to view encrypted password values in views.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
vendor-advisory https://www.jenkins.io/security/advisory/2025-12-10/#SECURITY-1809

Match rules

CPE URI Source package Min version Max version
jenkins == 2.541 == None
jenkins == 2.528.3 == None
cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:* jenkins >= None < 2.528.3
cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:* jenkins >= None < 2.541

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
jenkins edge-community 2.541.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.528.3-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.516.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.479.1-r1 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.479.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.361.2-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.346.2-r1 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.346.2-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.332.4-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.332.3-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.332.2-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.332.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.319.3-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.319.2-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins edge-community 2.287-r0 None possibly vulnerable
jenkins edge-community 2.275-r0 None possibly vulnerable
jenkins edge-community 2.245-r0 None possibly vulnerable
jenkins edge-community 2.228-r0 None possibly vulnerable
jenkins 3.23-community 2.516.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins 3.22-community 2.479.1-r1 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins 3.22-community 2.479.1-r0 Francesco Colista <fcolista@alpinelinux.org> possibly vulnerable
jenkins 3.22-community 2.361.2-r0 None possibly vulnerable
jenkins 3.22-community 2.346.2-r0 None possibly vulnerable
jenkins 3.22-community 2.332.1-r0 None possibly vulnerable
jenkins 3.22-community 2.319.3-r0 None possibly vulnerable
jenkins 3.22-community 2.319.2-r0 None possibly vulnerable
jenkins 3.22-community 2.287-r0 None possibly vulnerable
jenkins 3.22-community 2.275-r0 None possibly vulnerable
jenkins 3.22-community 2.245-r0 None possibly vulnerable
jenkins 3.22-community 2.228-r0 None possibly vulnerable