Security Advisory

CVE-2025-31720

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-02 14:59:49
Last updated 2025-04-02 16:49:21
Assigner jenkins
State PUBLISHED

Description

A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create permission but without Computer/Extended Read permission to copy an agent, gaining access to its configuration.