Serial number: AV25-413
Date: July 9, 2025
On July 9, 2025, Jenkins published a security advisory to address vulnerabilities in the following products:
- Apica Loadtest Plugin – version 1.10 and prior
- Applitools Eyes Plugin – version 1.16.5 and prior
- Aqua Security Scanner Plugin – version 3.2.8 and prior
- Credentials Binding Plugin – version 687.v619cb_15e923f and prior
- Dead Man's Snitch Plugin – version 0.1 and prior
- Git Parameter Plugin – version 439.vb_0e46ca_14534 and prior
- HTML Publisher Plugin – version 425 and prior
- IBM Cloud DevOps Plugin – version 2.0.16 and prior
- IFTTT Build Notifier Plugin – version 1.2 and prior
- Kryptowire Plugin – version 0.2 and prior
- Nouvola DiveCloud Plugin – version 1.08 and prior
- QMetry Test Management Plugin – version 1.13 and prior
- ReadyAPI Functional Testing Plugin – version 1.11 and prior
- Sensedia Api Platform tools Plugin – version 1.0 and prior
- Statistics Gatherer Plugin – version 2.0.3 and prior
- Testsigma Test Plan run Plugin – version 1.6 and prior
- User1st uTester Plugin – version 1.1 and prior
- VAddy Plugin – version 1.2.8 and prior
- Warrior Framework Plugin – version 1.2 and prior
- Xooa Plugin – version 0.0.7 and prior
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.