CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-9674

unknowncovered by 1 sourcefirst seen 2026-05-27
Affects plugin: Active Directory Affects plugin: AppSpider Affects plugin: Bitbucket OAuth Affects plugin: buildgraph-view Affects plugin: Credentials Binding Affects plugin: Email Extension Affects plugin: GitHub Integration Affects plugin: Job Import Affects plugin: LDAP Affects plugin: Multijob Affects plugin: Pipeline: Groovy Libraries

CSIRTS triage

What
Multiple plugins in Jenkins have security vulnerabilities.
Who is affected
Users of affected Jenkins plugins are at risk.
Urgency
Remediation is necessary as these vulnerabilities could lead to various security issues.
Action
Update the affected plugins in Jenkins.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-9674

Get an email if CVE-2026-9674 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-9674

CVE.org record

Embed the live status

CVE-2026-9674 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-9674 status](https://www.csirts.com/badge/CVE-2026-9674)](https://www.csirts.com/cve/CVE-2026-9674)