Jenkins Stack Hammer — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Stack Hammer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
- CVE-2025-31726 — CVSS 5.5 (medium): Jenkins Stack Hammer Plugin 1.0.6 and earlier stores Stack Hammer API keys unencrypted in job config.xml files on the Jenkins controller…