In Jenkins Git client Plugin 6.3.2 and earlier, except 6.1.4 and 6.2.1, Git URL field form validation responses differ based on whether the specified file path exists on the controller when specifying `amazon-s3` protocol for use with JGit, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.
References
| Link | Resource |
|---|---|
| https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3590 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
08 Sep 2025, 17:14
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Jenkins git Client
Jenkins |
|
| CPE | cpe:2.3:a:jenkins:git_client:6.2.0:*:*:*:*:jenkins:*:* cpe:2.3:a:jenkins:git_client:*:*:*:*:*:jenkins:*:* |
|
| References | () https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3590 - Vendor Advisory |
04 Sep 2025, 15:35
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | (en) In Jenkins Git client Plugin 6.3.2 and earlier, except 6.1.4 and 6.2.1, Git URL field form validation responses differ based on whether the specified file path exists on the controller when specifying `amazon-s3` protocol for use with JGit, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system. |
03 Sep 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
| CWE | CWE-200 CWE-538 |
03 Sep 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-09-03 15:15
Updated : 2025-09-08 17:14
NVD link : CVE-2025-58458
Mitre link : CVE-2025-58458
CVE.ORG link : CVE-2025-58458
JSON object : View
Products Affected
jenkins
- git_client