Jenkins Ec2 Fleet — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Ec2 Fleet, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2026-57294 — CVSS 5.4 (medium): A missing permission check in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers with Overall/Read permission…
- CVE-2026-57295 — CVSS 5.4 (medium): A cross-site request forgery (CSRF) vulnerability in Jenkins EC2 Fleet Plugin 4.2.3.539.v8fedff2a_81c3 and earlier allows attackers to…