Serial number: AV25-034
Date: January 23, 2025
On January 22, 2025, Jenkins published a security advisory to address vulnerabilities in the following products:
- Azure Service Fabric Plugin – version 1.6 and prior
- Bitbucket Server Integration Plugin – version 4.1.3 and prior
- Eiffel Broadcaster Plugin – version 2.10.2 and prior
- Folder-based Authorization Strategy Plugin – version 17.vd5b_18537403e and prior
- GitLab Plugin – version 1.9.6 and prior
- OpenId Connect Authentication Plugin – version 4.452.v2849b_d3945fa_ and prior
- Zoom Plugin – up to and including 1.5
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.