Skip to main content

Jenkins Assembla Plugin EUVDEUVD-2026-38785

| CVE-2026-57304 MEDIUM
Missing Authorization (CWE-862)
2026-06-24 jenkins GHSA-2r5w-jh6g-8hff
5.4
CVSS 3.1 · Vendor: jenkins
Share

Severity by source

Vendor (jenkins) PRIMARY
5.4 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
vuln.today AI
5.4 MEDIUM

PR:L reflects mandatory authenticated Jenkins session; C:L and I:L capture credential leakage and SSRF capability without full system compromise.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (jenkins).

CVSS VectorVendor: jenkins

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

3
Analysis Generated
Jun 24, 2026 - 16:20 vuln.today
CVSS changed
Jun 24, 2026 - 15:22 NVD
5.4 (MEDIUM)
CVE Published
Jun 24, 2026 - 13:20 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using an attacker-specified username and password.

AnalysisAI

Jenkins Assembla Plugin 1.4 and earlier exposes a connection-test endpoint without adequate permission enforcement, allowing any Jenkins user holding only Overall/Read permission to trigger outbound HTTP connections to an arbitrary attacker-controlled URL with attacker-supplied credentials. This enables both a limited Server-Side Request Forgery (SSRF) vector for internal network probing and credential interception on the attacker's endpoint. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privilege Jenkins account (Overall/Read)
Delivery
Identify Jenkins instance with Assembla Plugin ≤1.4 installed
Exploit
Craft request to plugin connection-test endpoint with attacker-controlled URL
Execution
Jenkins server initiates outbound HTTP connection to attacker host
Impact
Capture supplied credentials or enumerate internal network reachability

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to possess a valid Jenkins account with at minimum Overall/Read permission - the lowest standard permission level in Jenkins. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 score of 5.4 (Medium) with vector AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N accurately reflects the threat model: the flaw is network-reachable with low attack complexity but requires an authenticated session (PR:L), limiting the exposure surface to users who already hold a Jenkins account. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with a low-privilege Jenkins account (Overall/Read only) sends a crafted HTTP request to the Assembla Plugin's connection-test endpoint, specifying a URL pointing to an attacker-controlled server and a target credential set. The Jenkins server makes an outbound HTTP request carrying those credentials to the attacker's host, where they are logged; the attacker also learns whether internal IP ranges are reachable from the Jenkins host based on response timing or errors.
Remediation Upgrade Jenkins Assembla Plugin to a version that addresses SECURITY-3692 as directed by the Jenkins security advisory at https://www.jenkins.io/security/advisory/2026-06-24/#SECURITY-3692%20(2). … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-38785 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy