CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-58459

Jenkins global-build-stats Plugin 322.v22f4db_18e2dd and earlier does not perform permission checks in its REST API endpoints, allowing attackers with Overall/Read permission to enumerate graph IDs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.3%

CVSS Severity

CVSS v3 Score 4.3

References

https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3535

Products affected by CVE-2025-58459

Jenkins » Global Build Stats » Version: 244.v27c8a_2e50a_34

cpe:2.3:a:jenkins:global_build_stats:244.v27c8a_2e50a_34
Jenkins » Global Build Stats » Version: 269.v214f74360b_3a_

cpe:2.3:a:jenkins:global_build_stats:269.v214f74360b_3a_
Jenkins » Global Build Stats » Version: 282.v79ca_e079d1b_1

cpe:2.3:a:jenkins:global_build_stats:282.v79ca_e079d1b_1
Jenkins » Global Build Stats » Version: 288.vb_2c4a_0f138b_b_

cpe:2.3:a:jenkins:global_build_stats:288.vb_2c4a_0f138b_b_
Jenkins » Global Build Stats » Version: 293.vd7b_d6e361475

cpe:2.3:a:jenkins:global_build_stats:293.vd7b_d6e361475
Jenkins » Global Build Stats » Version: 304.ve03f19d5969e

cpe:2.3:a:jenkins:global_build_stats:304.ve03f19d5969e
Jenkins » Global Build Stats » Version: 307.v03dce5a_f8943

cpe:2.3:a:jenkins:global_build_stats:307.v03dce5a_f8943
Jenkins » Global Build Stats » Version: 314.v2c5018728d76

cpe:2.3:a:jenkins:global_build_stats:314.v2c5018728d76
Jenkins » Global Build Stats » Version: 316.vf8870f424d78

cpe:2.3:a:jenkins:global_build_stats:316.vf8870f424d78
Jenkins » Global Build Stats » Version: 322.v22f4db_18e2dd

cpe:2.3:a:jenkins:global_build_stats:322.v22f4db_18e2dd

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-58459

Products

Pricing

Contact Us