Vulnerability Details CVE-2025-47886
A cross-site request forgery (CSRF) vulnerability in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified username and password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.0%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2025-47886
-
cpe:2.3:a:jenkins:cadence_vmanager:1.0
-
cpe:2.3:a:jenkins:cadence_vmanager:1.1
-
cpe:2.3:a:jenkins:cadence_vmanager:1.10
-
cpe:2.3:a:jenkins:cadence_vmanager:1.2
-
cpe:2.3:a:jenkins:cadence_vmanager:1.3
-
cpe:2.3:a:jenkins:cadence_vmanager:1.4
-
cpe:2.3:a:jenkins:cadence_vmanager:1.5
-
cpe:2.3:a:jenkins:cadence_vmanager:1.6
-
cpe:2.3:a:jenkins:cadence_vmanager:1.7
-
cpe:2.3:a:jenkins:cadence_vmanager:1.8
-
cpe:2.3:a:jenkins:cadence_vmanager:1.9
-
cpe:2.3:a:jenkins:cadence_vmanager:2.3
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4.2
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4.3
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4.5
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4.7
-
cpe:2.3:a:jenkins:cadence_vmanager:2.4.9
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.1
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.2
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.3
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.4
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.5
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.6
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.7
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.8
-
cpe:2.3:a:jenkins:cadence_vmanager:2.5.9
-
cpe:2.3:a:jenkins:cadence_vmanager:2.6.0
-
cpe:2.3:a:jenkins:cadence_vmanager:2.7.0
-
cpe:2.3:a:jenkins:cadence_vmanager:2.7.1
-
cpe:2.3:a:jenkins:cadence_vmanager:3.0.0
-
cpe:2.3:a:jenkins:cadence_vmanager:3.0.1
-
cpe:2.3:a:jenkins:cadence_vmanager:3.0.2
-
cpe:2.3:a:jenkins:cadence_vmanager:3.0.3
-
cpe:2.3:a:jenkins:cadence_vmanager:3.0.4
-
cpe:2.3:a:jenkins:cadence_vmanager:4.0.0-282.v5096a_c2db_275
-
cpe:2.3:a:jenkins:cadence_vmanager:4.0.1-286.v9e25a_740b_a_48