CVE-2025-64131
published 2025-10-29CVE-2025-64131: Jenkins SAML Plugin 4.583.vc68232f7018a_ and earlier does not implement a replay cache, allowing attackers able to obtain information about the SAML…
high7.5CVSS 3.1
AVNACHPRNUIRSUCHIHAH
Jenkins SAML Plugin 4.583.vc68232f7018a_ and earlier does not implement a replay cache, allowing attackers able to obtain information about the SAML authentication flow between a user's web browser and Jenkins to replay those requests, authenticating to Jenkins as that user.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jenkins | azure_cli_plugin | — | — |
| jenkins | byteguard_build_actions_plugin | — | — |
| jenkins | curseforge_publisher_plugin | — | — |
| jenkins | eggplant_runner_plugin | — | — |
| jenkins | extensible_choice_parameter_plugin | — | — |
| jenkins | jdepend_maven_plugin | — | — |
| jenkins | jdepend_plugin | — | — |
| jenkins | mcp_server_plugin | — | — |
| jenkins | nexus_task_runner_plugin | — | — |
| jenkins | openshift_pipeline_plugin | — | — |
| jenkins | publish_to_bitbucket_plugin | — | — |
| jenkins | saml | < 4.583.585.v22ccc1139f55 | 4.583.585.v22ccc1139f55 |
| jenkins | saml_plugin | — | — |
| jenkins | start_windocks_containers_plugin | — | — |
| jenkins | themis_plugin | — | — |
| jenkins_project | jenkins_saml_plugin | <= 4.583.vc68232f7018a_ | — |