CVE-2024-52551

Name of the Vulnerable Software and Affected Versions Jenkins Pipeline: Declarative Plugin versions 2.2214.vb b 34b 2ea 9b 83 and earlier

Description The issue allows attackers with Item/Build permission to restart a previous build whose Jenkinsfile script is no longer approved, as the plugin does not check whether the main script used to restart a build from a specific stage is approved. This can be exploited by attackers with the necessary permissions.

Recommendations For Jenkins Pipeline: Declarative Plugin versions 2.2214.vb b 34b 2ea 9b 83 and earlier, update to version 2.2218.v56d0cda 37c72 or later, which refuses to restart a build whose main Jenkinsfile script is unapproved. As a temporary workaround, consider restricting the Item/Build permission to minimize the risk of exploitation.