Known Vulnerabilities for Pipeline by Jenkins
Listed below are 8 of the newest known vulnerabilities associated with "Pipeline" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59796 json | In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-58579 json | RAGFlow before 0.26.3 stores an agent pipeline (DSL) node name without sanitization: the agent update endpoint normalizes the... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58370 json | Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. For the GitLab forge driver, p... | Not Provided | 2026-06-30 | 2026-07-02 |
| CVE-2026-58172 json | Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows denied clients t... | Not Provided | 2026-06-30 | 2026-07-02 |
| CVE-2026-57300 json | A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows attackers with Item/Read perm... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57296 json | Jenkins External Workspace Manager Plugin 1.3.2 and earlier does not reject path traversal sequences in the custom workspace ... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57284 json | Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier does not restrict the types that can be instantiated through t... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57283 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline: Groovy Plugin 4331.v9d06ed4658ff and earlier allows at... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57158 json | FreeRDP is a free implementation of the Remote Desktop Protocol. From 3.21.0 before 3.28.0, FreeRDP clients using the GFX pip... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-56301 json | Nuxt 4.0.0 before 4.4.7 and 3.18.0 before 3.21.7, when running the development server (nuxt dev) on Linux, binds the vite-nod... | Not Provided | 2026-06-23 | 2026-06-23 |