Jenkins Opentelemetry — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Opentelemetry, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
- CVE-2025-58460 — CVSS 4.2 (medium): A missing permission check in Jenkins OpenTelemetry Plugin 3.1543.v8446b_92b_cd64 and earlier allows attackers with Overall/Read permission…