Ldap CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-48917	2 Jenkins, Jenkins Project	2 Ldap, Jenkins Ldap Plugin	2026-06-02	6.6 Medium
Jenkins LDAP Plugin 807.v7d7de30930cf and earlier deserializes data from LDAP referrals without validation.
CVE-2026-48916	2 Jenkins, Jenkins Project	2 Ldap, Jenkins Ldap Plugin	2026-06-02	6.6 Medium
Jenkins LDAP Plugin 807.v7d7de30930cf and earlier follows LDAP referrals.
CVE-2019-10434	1 Jenkins	1 Ldap Email	2024-11-21	7.5 High
Jenkins LDAP Email Plugin transmits configured credentials in plain text as part of the global Jenkins configuration form, potentially resulting in their exposure.

Page 1 of 1.