Primary

Context

Jenkins SAML Plugin Replay Vulnerability Allowing Authentication Request Replay

Vulnerability

Patched

A replay vulnerability has been identified in the Jenkins SAML Plugin, affecting versions through 4.583.vc68232f7018a_. The vulnerability arises because the plugin does not implement a replay cache, allowing attackers to intercept and replay SAML authentication requests. This could result in unauthorized authentication to Jenkins as the user whose request was replayed.

Impact

Exploitation of this vulnerability allows for unauthorized authentication to Jenkins, potentially leading to unauthorized access to user accounts and associated permissions.

Remediation

Users of the Jenkins SAML Plugin should update to version 4.583.585.v22ccc1139f55, which includes a fix for this vulnerability.

Added: Oct 29, 2025, 2:36 PM

Updated: Oct 29, 2025, 2:36 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

6.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

6.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Jenkins SAML Plugin Replay Vulnerability Allowing Authentication Request Replay

Vulnerability

Impact

Remediation

Affected Products

Jenkins SAML Plugin

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating