CVE-2025-31723

Summary

A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the build queue order.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins Simple Queue Plugin0 <= 1.4.6affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References