GHSA-49HX-9MM2-7675 Jenkins OpenId Connect Authentication Plugin lacks audience claim validation
Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a1de8 and earlier does not check the aud Audience claim of an ID Token during its authentication flow, a value to verify the token is issued for the correct client. This vulnerability may allow attackers to subvert the authentication flow...