CVE-2025-27625
CVE-2025-27625
Título es
CVE-2025-27625
Mié, 05/03/2025 – 23:15
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2025-27625
Descripción en
In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash (`\`) characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as part of scheme-relative redirects.
06/03/2025
06/03/2025
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
Pendiente de análisis
Referencias
https://www.jenkins.io/security/advisory/2025-03-05/#SECURITY-3501
Enviar en el boletín
Off
