Filtered by vendor Jenkins Project Subscriptions
Filtered by product Jenkins Matrix Authorization Strategy Plugin Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-42521 1 Jenkins Project 1 Jenkins Matrix Authorization Strategy Plugin 2026-04-30 6.5 Medium
Jenkins Matrix Authorization Strategy Plugin 2.0-beta-1 through 3.2.9 (both inclusive) invokes parameterless constructors of classes specified in configuration when deserializing inheritance strategies, without restricting the classes that can be instantiated, allowing attackers with Item/Configure permission to instantiate arbitrary types, which may lead to information disclosure or other impacts depending on the classes available on the classpath.