A vulnerability labeled as critical has been found in OWASP ZAP Plugin up to 1.0.7 on Jenkins. This impacts an unknown function. Such manipulation leads to permission issues. This vulnerability is referenced as CVE-2026-57301 . It is possible to launch the attack remotely. No exploit is available.