Jenkins Folder-based Authorization Strategy — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Folder-based Authorization Strategy, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-24401 — CVSS 6.8 (medium): Jenkins Folder-based Authorization Strategy Plugin 217.vd5b_18537403e and earlier does not verify that permissions configured to be granted…
CVE-2022-27200 — CVSS 4.8 (medium): Jenkins Folder-based Authorization Strategy Plugin 1.3 and earlier does not escape the names of roles shown on the configuration form…