CVE-2026-42525 - Jenkins Microsoft Entra ID Plugin Open Redirection Vulnerability
CVE ID :CVE-2026-42525 Published : April 29, 2026, 2:16 p.m. | 21 minutes ago Description :Jenkins Microsoft Entra ID (previously Azure AD) Plugin 666.v6060de32f87d and earlier does not restrict the redirect URL after login, allowing attackers to perform phishing attacks. Severity: 0.0 | NA
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] DFIR L3 Interviews
- [CYBER] Cyber proxy wars escalate as hackers shift to infrastructure targets
- [CYBER] cPanel, WHM emergency update fixes critical auth bypass bug
- [CYBER] Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error
- [CYBER] Hormuz Crisis Drives Insurance Spike
- [CYBER] Exploring training platforms alternative to Mimecast for better phishing awareness.