org.jenkins-ci.plugins:active-directory vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-48919Mediumorg.jenkins-ci.plugins:active-directory: Jenkins Active Directory Plugin deserializes data from LDAP referrals without validationCVE-2026-48918Mediumorg.jenkins-ci.plugins:active-directory: Jenkins Active Directory Plugin follows LDAP referrals by defaultCVE-2023-37943Mediumorg.jenkins-ci.plugins:active-directory: Jenkins Active Directory Plugin vulnerable to Active Directory credential disclosureCVE-2020-2303Mediumorg.jenkins-ci.plugins:active-directory: CSRF vulnerability in Jenkins Active Directory PluginCVE-2020-2302Mediumorg.jenkins-ci.plugins:active-directory: Missing permission check in Jenkins Active Directory Plugin allows accessing domain health check pageCVE-2020-2299Criticalorg.jenkins-ci.plugins:active-directory: Improper Authentication in Jenkins Active Directory PluginCVE-2020-2301Criticalorg.jenkins-ci.plugins:active-directory: Authentication cache in Active Directory Jenkins Plugin allows logging in with any passwordCVE-2020-2300Criticalorg.jenkins-ci.plugins:active-directory: Improper Authentication (empty password) in Jenkins Active Directory PluginCVE-2017-2649Highorg.jenkins-ci.plugins:active-directory: Jenkins Active Directory Plugin did not verify certificate of AD serverCVE-2019-1003009Highorg.jenkins-ci.plugins:active-directory: Jenkins Active Directory Plugin Improper certificate validation with StartTLSCVE-2022-23105Mediumorg.jenkins-ci.plugins:active-directory: User passwords transmitted in plain text by Jenkins Active Directory Plugin

Stop the waste.
Protect your environment with Kodem.