CVE-2025-53678 – Jenkins uTester Plugin JWT Token Storage Vulnerability

CVE ID : CVE-2025-53678

Published : July 9, 2025, 4:15 p.m. | 1 hour, 50 minutes ago

Description : Jenkins User1st uTester Plugin 1.1 and earlier stores the uTester JWT token unencrypted in its global configuration file on the Jenkins controller, where it can be viewed by users with access to the Jenkins controller file system.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…