GHSA-mpff-xhg4-vr45MediumCVSS 4.3

A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows...

Published
June 24, 2026
Last Modified
June 24, 2026

🔗 CVE IDs covered (1)

📋 Description

A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows attackers with Item/Read permission to read the Pipeline replay scripts of jobs they can access.

🔗 References (3)