Serial number: AV25-707
Date: October 29, 2025
On October 29, 2025, Jenkins published a security advisory to address vulnerabilities in the following products:
- SAML Plugin – version 4.583.vc68232f7018a_ and prior
- MCP Server Plugin – 0.84.v50ca_24ef83f2 and prior
- Extensible Choice Parameter Plugin – 239.v5f5c278708cf and prior
- JDepend Plugin – 1.3.1 and prior
- Eggplant Runner Plugin – 0.0.1.301.v963cffe8ddb_8 and prior
- Themis Plugin – 1.4.1 and prior
- Start Windocks Containers Plugin – 1.4 and prior
- azure-cli Plugin – 0.9 and prior
- Nexus Task Runner Plugin – 0.9.2 and prior
- OpenShift Pipeline Plugin – 1.0.57 and prior
- ByteGuard Build Actions Plugin – 1.0 and prior
- Curseforge Publisher Plugin – 1.0 and prior
- Publish to Bitbucket Plugin – version 0.4 and prior
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.