vulnerability

FreeBSD: VID-2956aba3-1fcb-4c39-9cea-d88a46a3bf93 (CVE-2025-67638): jenkins -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:P/I:N/A:N)	Dec 12, 2025	Jan 27, 2026	Jan 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:N/A:N)

Published

Dec 12, 2025

Added

Jan 27, 2026

Modified

Jan 27, 2026

Description

Jenkins Security Advisory: Description (High) SECURITY-3630 / CVE-2025-67635 Denial of service vulnerability in HTTP-based CLI (Medium) SECURITY-1809 / CVE-2025-67636 Missing permission check on password fields (Medium) SECURITY-783 / CVE-2025-67637 (storage), CVE-2025-67638 (masking) Build authorization token stored and displayed in plain text (Low) SECURITY-1166 / CVE-2025-67639 CSRF vulnerability on the login form

Solutions

freebsd-upgrade-package-jenkinsfreebsd-upgrade-package-jenkins-lts

References

CVE-2025-67638
https://attackerkb.com/topics/CVE-2025-67638
CWE-312

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today