Jenkins Missing Authorization Vulnerability - CVE-2026-53438
A missing permission check in Jenkins 2.567 and earlier LTS 2.555.2 and earlier allows attackers with Item/Cancel permission but lacking Item/Read permission to cancel queue items they do not have permission to view.