Security Advisory

CVE-2025-64131

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-29 13:29:39

Last updated 2025-11-04 21:14:22

Assigner jenkins

State PUBLISHED

Description

Jenkins SAML Plugin 4.583.vc68232f7018a_ and earlier does not implement a replay cache, allowing attackers able to obtain information about the SAML authentication flow between a users web browser and Jenkins to replay those requests, authenticating to Jenkins as that user.

← Browse all CVEs View on cve.org ↗