
Jenkins Security Update Patches Sandbox Bypass, Command Injection, and CSRF Bugs
Jenkins released a security advisory on June 24, 2026, disclosing 26 vulnerabilities across 18 plugins. The flaws range from high-severity sandbox-bypass and path-traversal bugs to medium-severity CSRF issues and missing permission checks. Two high-severity vulnerabilities (CVE-2026-57280 and CVE-2026-57281) affect the Script Security Plugin version 1402.v94c9ce464861 and earlier. Multiple Jenkins Vulnerabilities patched The first flaw allows […]
The post Jenkins Security Update Patches Sandbox Bypass, Command Injection, and CSRF Bugs appeared first on Cyber Security News.