-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| org.jenkins-ci.plugins:electricflow | maven | <= 1.1.6 | 1.1.7 |
Miggo AIRoot Cause AnalysisThe core vulnerability centers around the connection test validation method. Multiple authoritative sources (NVD, Jenkins advisory) explicitly name Configuration#doTestConnection as the vulnerable endpoint. The function signature is reconstructed using standard Jenkins plugin package conventions (com.cloudbees.cd.plugins.*) and the class/method name directly referenced in vulnerability descriptions. This method would appear in runtime profilers when attackers trigger the CSRF exploit or attempt unauthorized connection tests.
JavaJavaKEV Misses 88% of Exploited CVEs- Get the report