CVE-2025-47887 – Jenkins Cadence vManager Plugin Unauthenticated Remote Code Execution

May 14, 2025

CVE ID : CVE-2025-47887

Published : May 14, 2025, 9:15 p.m. | 1 hour, 51 minutes ago

Description : Missing permission checks in Jenkins Cadence vManager Plugin 4.0.1-286.v9e25a_740b_a_48 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47888 – Jenkins DingTalk Plugin SSL/TLS Certificate Validation Bypass Vulnerability

Next Article CVE-2025-47886 – Jenkins Cadence vManager Plugin CSRF Vulnerability

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-47887 – Jenkins Cadence vManager Plugin Unauthenticated Remote Code Execution

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

CVE-2025-47241: Critical Whitelist Bypass in Browser Use Exposes Internal Services

Error’d: Cuts Like a Knife

Key Questions to Ask Before Hiring the Right AI Development Company❓

Diablo 4 is collaborating with Berserk, bringing Kentaro Miura’s legendary manga series to the world of Sanctuary

CVE-2023-47295 – NCR Terminal Handler CSV Injection Vulnerability

How to Get Information About Your Linux System Through the Command Line

CVE-2025-4724 – iSourcecode Placement Management System SQL Injection Vulnerability

CVE-2025-41672 – Citrix NetScaler JWT Token Default Certificate Vulnerability

CVE-2025-47887 – Jenkins Cadence vManager Plugin Unauthenticated Remote Code Execution

Related Posts