Jenkins 多个插件安全漏洞公告(沙箱绕过/命令注入/CSRF等)
Security AdvisoryHighJenkins
Affected:
- Script Security Plugin
- Git Client Plugin
- Pipeline: Groovy Plugin
- GitHub Branch Source Plugin
- Git Parameter Plugin
Fixed in:
- Script Security Plugin >= 1402.v94c9ce464861
- Git Client Plugin >= 6.6.1
- Pipeline: Groovy Plugin >= 4331.v056fd4658ff
- GitHub Branch Source Plugin >= 1967.1969.v205fd594c821
- Git Parameter Plugin >= 462.463.v496a_59f698e5
Referenced CVEs: CVE-2026-57287
文章内图片已隐藏以节省流量 · 升级 Pro 后可见图片及离线存档
本文由本平台从 www.jenkins.io 自动抓取,经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。