CVE-2026-57299

Summary

Missing permission checks in Jenkins Contrast Continuous Application Security Plugin 3.11 and earlier allow attackers with Overall/Read permission to enumerate the names of configured Contrast metadata.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins Contrast Continuous Application Security Plugin0 <= 3.11affected

Weaknesses

References