Unknown CVE-2026-53437 Jenkins 2.567 and earlier, LTS 2.555.2 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins when it contains tab or newline characters between `//`, allowing attackers to perform phishing attacks. CVSS: N/A · CWE: N/A View on...

#Sicherheitslücke #Phishing

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[Unknown] CVE-2026-53437 – Jenkins 2.567 and earlier, LTS 2.555.2 and earlier improperly determines that a ...

VERWANDTEARTIKEL

Hackers Use Tax Phishing Emails to Deploy In-Memory Malware on Windows Systems

OpenClaw AI Agent Leaks Sensitive Credentials in New Phishing Attack Simulation

CVE-2026-49759 - Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash

CVE-2026-46558 - Plane: Cross-workspace asset authorization bypass lets any authenticated user read, copy, delete, and overwrite assets in other Plane workspaces

CVE-2026-45569 - Roxy-WI: Path-traversal patch in commit d4d10006 is a no-op (tuple-membership bug)

CVE-2026-45565 - Roxy-WI: EscapedString validator skips its '..' block when stripping (root cause for several path-traversal/RCE vectors)