Jenkins Job Import Plugin versions 143.v044a_2e819b_27 and earlier do not perform a permission check in one of their HTTP endpoints. This flaw enables an attacker who can obtain only the Overall/Read permission to discover the IDs of credentials stored in the Jenkins instance. The exposed IDs could potentially be used as a foothold to locate and exploit credential data, representing an information disclosure vulnerability rooted in improper privilege management (CWE-269).

The vulnerability affects Jenkins installations that use the Jenkins Job Import Plugin at or below version 143.v044a_2e819b_27. Any Jenkins instance with the plugin enabled, regardless of other security settings, is susceptible if an attacker has read access. The issue is specific to the Job Import Plugin and does not apply to core Jenkins or other plugins.

The CVSS score of 4.3 indicates moderate severity. The EPSS score is not available, so actual exploitation probability cannot be quantified. The vulnerability is not listed in the CISA KEV catalog. Attackers would need read access which is common for many users, meaning enumeration could be performed by anyone who can view jobs. No additional prerequisites are stated beyond the permission check, so the flaw is easy to exploit once the necessary read privilege is present.