Filtered by vendor Jenkins Project
Subscriptions
Filtered by product Jenkins Bitbucket Push And Pull Request Plugin
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-57289 | 1 Jenkins Project | 1 Jenkins Bitbucket Push And Pull Request Plugin | 2026-06-24 | 4.8 Medium |
| Jenkins Bitbucket Push and Pull Request Plugin 3.3.8 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections sending Bearer token authenticated requests to the configured Bitbucket Server endpoint, allowing attackers able to intercept network traffic to capture the token. | ||||
Page 1 of 1.