CVE-2026-33002 | Jenkins up to 2.426.2/2.441/2.540.x CLI WebSocket Endpoint dns rebinding

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability has been found in Jenkins up to 2.426.2/2.441/2.540.x and classified as problematic. Impacted is an unknown function of the component CLI WebSocket Endpoint. Performing a manipulation results in reliance on reverse dns resolution.

This vulnerability was named CVE-2026-33002. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-33002 | Jenkins up to 2.426.2/2.441/2.540.x CLI WebSocket Endpoint dns rebinding

Post correlati

CVE-2024-7589 | FreeBSD OpenSSH race condition

CVE-2025-3812 | WPBot Pro Chatbot Plugin up to 13.6.2 on WordPress wp-config.php qcld_openai_delete_training_file denial of service

CVE-2025-0726 | Eclipse ThreadX NetX Duo up to 6.4.1 Packets cleanup (GHSA-pwf8-5q9w-m763)

CVE-2025-35061 | Newforma Project Center up to 2023.1 NIX Service LegacyIntegrationServices.asmx authentication replay