CVE-2025-47888 – Jenkins DingTalk Plugin SSL/TLS Certificate Validation Bypass Vulnerability

CVE ID : CVE-2025-47888

Published : May 14, 2025, 9:15 p.m. | 1 hour, 39 minutes ago

Description : Jenkins DingTalk Plugin 2.7.3 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections to the configured DingTalk webhooks.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…