CVE-2025-58458

Published: Sep 3, 2025Modified: Nov 4, 2025

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In Jenkins Git client Plugin 6.3.2 and earlier, except 6.1.4 and 6.2.1, Git URL field form validation responses differ based on whether the specified file path exists on the controller when specifying `amazon-s3` protocol for use with JGit, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.

Affected (3)

Products: Jenkins: Git Client

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Jenkins Git Client	Up to 6.1.3
Jenkins Git Client	From 6.3.0 to 6.3.2
Jenkins Git Client	Version 6.2.0

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Insertion of Sensitive Information into Externally-Accessible File or Directory

The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

References (2)

https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3590

Source: jenkinsci-cert@googlegroups.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2025/09/03/4

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.