FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-12-17 01:49:53 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
b9b668f0-96ec-4568-b618-2edea45d6933jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(High) SECURITY-3618 / CVE-2025-5115

HTTP/2 denial of service vulnerability in bundled Jetty

(Medium) SECURITY-3594 / CVE-2025-59474

Missing permission check allows obtaining agent names

(Medium) SECURITY-3625 / CVE-2025-59475

Missing permission check in authenticated users' profile menu

(Medium) SECURITY-3424 / CVE-2025-59476

Log message injection vulnerability


Discovery 2025-09-17
Entry 2025-09-17
jenkins
< 2.528

jenkins-lts
< 2.516.3

CVE-2025-5115
CVE-2025-59474
CVE-2025-59475
CVE-2025-59476
https://www.jenkins.io/security/advisory/2025-09-17/
2956aba3-1fcb-4c39-9cea-d88a46a3bf93jenkins -- multiple vulnerabilities

Jenkins Security Advisory:

Description

(High) SECURITY-3630 / CVE-2025-67635

Denial of service vulnerability in HTTP-based CLI

(Medium) SECURITY-1809 / CVE-2025-67636

Missing permission check on password fields

(Medium) SECURITY-783 / CVE-2025-67637 (storage), CVE-2025-67638 (masking)

Build authorization token stored and displayed in plain text

(Low) SECURITY-1166 / CVE-2025-67639

CSRF vulnerability on the login form


Discovery 2025-12-10
Entry 2025-12-12
jenkins
< 2.541

jenkins-lts
< 2.528.3

CVE-2025-67635
CVE-2025-67636
CVE-2025-67637
CVE-2025-67638
CVE-2025-67639
https://www.jenkins.io/security/advisory/2025-12-10/