A vulnerability identified as critical has been detected in Active Directory Plugin up to 2.41.1 on Jenkins. This affects an unknown function of the component LDAP Search Filter Parser . This manipulation causes injection. The identification of this vulnerability is CVE-2026-57288 . It is possible to initiate the attack remotely. There is no exploit available.