CVE-2025-67638
EUVD-2025-20245810.12.2025, 17:15
Jenkins 2.540 and earlier, LTS 2.528.2 and earlier does not mask build authorization tokens displayed on the job configuration form, increasing the potential for attackers to observe and capture them.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| jenkins | jenkins | 𝑥 < 2.528.3 |
| jenkins | jenkins | 𝑥 < 2.541 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration