CVE-2025-47888 – Jenkins DingTalk Plugin SSL/TLS Certificate Validation Bypass Vulnerability

May 14, 2025

CVE ID : CVE-2025-47888

Published : May 14, 2025, 9:15 p.m. | 1 hour, 51 minutes ago

Description : Jenkins DingTalk Plugin 2.7.3 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections to the configured DingTalk webhooks.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47889 – Jenkins WSO2 Oauth Plugin Authentication Bypass Vulnerability

Next Article CVE-2025-47887 – Jenkins Cadence vManager Plugin Unauthenticated Remote Code Execution

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

Minecraft licensing robbed us of this controversial NFL schedule release video

The power of generators

The power of generators

Simplify Factory Associations with Laravel’s UseFactory Attribute

This Week in Laravel: React Native, PhpStorm Junie, and more

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

CVE-2025-47888 – Jenkins DingTalk Plugin SSL/TLS Certificate Validation Bypass Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-2305 – Apache Linux Path Traversal Vulnerability

Largest Data Breach Ever? Lawsuit Against National Public Data for Allegedly Compromising Data of 3 Billion People

wxDownload Fast – download manager

Windows Defender Bypass Tool Shared on GitHub

Early View Data Preparation with Laravel View Creators

The best sports watches of 2024: Expert tested and reviewed

Redefining software excellence: Quality, testing, and observability in the age of GenAI

Why Regulated Industries are Turning to Military-Grade Cyber Defenses

Single Agent Architectures (SSAs) and Multi-Agent Architectures (MAAs): Achieving Complex Goals, Including Enhanced Reasoning, Planning, and Tool Execution Capabilities

CVE-2025-47888 – Jenkins DingTalk Plugin SSL/TLS Certificate Validation Bypass Vulnerability

Related Posts