CVE-2025-31720 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-31720 PUBLISHED

A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create permission but without Computer/Extended Read permission to copy an agent, gaining access to its configuration.

EPSS 0.11% · 29.8th percentile

Risk Scores

EPSS Score

0.11%

29.8th percentile

Affected Products

Vendor	Product	Versions
Bitnami	jenkins	0, 2.493.0
Bitnami	jenkins	0, 2.493.0

Timeline

Apr 2, 2025 CVE Published
Apr 2, 2025 Coalition ESS Score
Apr 2, 2025 Coalition ESS Score
Apr 3, 2025 EPSS Score
Apr 15, 2025 EPSS Score
Apr 28, 2025 EPSS Score
May 10, 2025 EPSS Score
May 22, 2025 EPSS Score
May 22, 2025 Coalition ESS Score
Jun 3, 2025 EPSS Score
Jun 16, 2025 EPSS Score
Jun 28, 2025 EPSS Score

References

Open in Interactive Console →