CVE-2025-58458

In Jenkins Git client Plugin 6.3.2 and earlier, Git URL field form validation responses differ based on whether the specified file path exists on the controller when specifying amazon-s3 protocol for use with JGit, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system.

Published: Sep 3, 2025
Updated: Sep 4, 2025
CVE: CVE-2025-58458
GHSA: GHSA-g2pq-9jr7-w6gv
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-200
CWE-538

Affected Software
References

Software	From	Fixed in
org.jenkins-ci.plugins / git-client	-	6.3.3

https://github.com/jenkinsci/git-client-plugin/commit/20090a86c3ebc72e5283c882de73e3a4459137bb
https://www.jenkins.io/security/advisory/2025-09-03/#SECURITY-3590

Vulnerability Database

CVE-2025-58458

Deep Security Visibility Without the Complexity