CVE-2026-48918

Description

Jenkins Active Directory Plugin 2.41 and earlier follows LDAP referrals by default.

CVSS breakdown

Affected products

• Jenkins Project / Jenkins Active Directory Plugin0 – 2.41

References

• MISChttps://www.jenkins.io/security/advisory/2026-05-27/#SECURITY-3659