Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

9A194021-64F2-52A4-8852-B218D3699FB9

HistoryJan 23, 2024 - 7:19 p.m.

Vulners
/
Githubexploit
/
Exploit for Path Traversal in Jenkins

Exploit for Path Traversal in Jenkins

2024-01-2319:19:04

jenkins

vulnerability

mitigations

cli

http endpoint

ssh port

script console

ssh server plugin

plugin management

groovy hook script

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.97

Percentile

99.8%

JSON

= SECURITY-3314/SECURITY-3315 Mitigation

This repository docume…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

freebsd 1

nessus 5

osv 9

prion 2

cve 2

veracode 2

alpinelinux 2

github 2

nvd 2

cvelist 2

redhatcve 2

githubexploit 28

packetstorm 3

hivepro 1

zdt 1

metasploit 1

exploitdb 1

vulnrichment 1

attackerkb 1

trendmicroblog 1

cisa_kev 1

wolfi 1

cgr 1

thn 2

rapid7blog 1

kitploit 1

redhat 3

redos 1

qualysblog 2

oracle 1

freebsd

jenkins -- multiple vulnerabilities

2024-01-24 00:00:00

nessus

Jenkins LTS < 2.426.3 / Jenkins weekly < 2.442 Multiple Vulnerabilities

2024-01-24 00:00:00

FreeBSD : jenkins -- multiple vulnerabilities (8b03d274-56ca-489e-821a-cf32f07643f0)

2024-01-25 00:00:00

RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2024:0776)

2024-04-28 00:00:00

osv

CVE-2024-23898

2024-01-24 18:15:09

CGA-4h3f-m3qp-f3fr

2024-06-06 12:23:38

BIT-jenkins-2024-23898

2024-03-06 10:53:43

prion

Cross site scripting

2024-01-24 18:15:00

Design/Logic Flaw

2024-01-24 18:15:00

cve

CVE-2024-23898

2024-01-24 18:15:09

CVE-2024-23897

2024-01-24 18:15:09

veracode

Cross-Site WebSocket Hijacking (CSWSH)

2024-01-31 07:28:49

Arbitrary File Read

2024-01-31 06:55:39

alpinelinux

CVE-2024-23898

2024-01-24 18:15:09

CVE-2024-23897

2024-01-24 18:15:09

github

Cross-site WebSocket hijacking vulnerability in the Jenkins CLI

2024-01-24 18:31:02

Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE

2024-01-24 18:31:02

nvd

CVE-2024-23898

2024-01-24 18:15:09

CVE-2024-23897

2024-01-24 18:15:09

cvelist

CVE-2024-23898

2024-01-24 17:52:23

CVE-2024-23897

2024-01-24 17:52:22

redhatcve

CVE-2024-23898

2024-01-25 20:22:19

CVE-2024-23897

2024-01-25 20:21:50

githubexploit

Exploit for Path Traversal in Jenkins

2024-01-29 04:41:53

Exploit for Path Traversal in Jenkins

2024-02-26 03:07:28

Exploit for Path Traversal in Jenkins

2024-02-19 02:29:12

packetstorm

Jenkins cli Ampersand Replacement Arbitrary File Read

2024-08-31 00:00:00

Jenkins 2.441 / LTS 2.426.3 Arbitrary File Read

2024-01-29 00:00:00

Jenkins 2.441 Local File Inclusion

2024-04-15 00:00:00

hivepro

Critical Remote Code Execution Flaws Uncovered in Jenkins

2024-02-01 06:56:33

zdt

Jenkins 2.441 / LTS 2.426.3 Arbitrary File Read Exploit

2024-01-29 00:00:00

metasploit

Jenkins cli Ampersand Replacement Arbitrary File Read

2024-01-30 22:12:10

exploitdb

Jenkins 2.441 - Local File Inclusion

2024-04-15 00:00:00

vulnrichment

CVE-2024-23897

2024-01-24 17:52:22

attackerkb

CVE-2024-23897

2024-01-24 00:00:00

trendmicroblog

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

2024-03-19 00:00:00

cisa_kev

Jenkins Command Line Interface (CLI) Path Traversal Vulnerability

2024-08-19 00:00:00

wolfi

CVE-2024-23897 vulnerabilities

2024-09-16 09:11:42

cgr

CVE-2024-23897 vulnerabilities

2024-05-19 03:07:16

thn

CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks

2024-08-20 04:53:00

Critical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!

2024-01-25 11:57:00

rapid7blog

Metasploit Weekly Wrap-Up 04/05/2024

2024-04-05 18:59:29

kitploit

CVE-2024-23897 - Jenkins <= 2.441 & <= LTS 2.426.2 PoC And Scanner

2024-02-25 11:30:00

redhat

(RHSA-2024:0776) Important: jenkins and jenkins-2-plugins security update

2024-02-12 10:18:15

(RHSA-2024:0775) Important: jenkins and jenkins-2-plugins security update

2024-02-12 10:17:47

(RHSA-2024:0778) Important: Jenkins and Jenkins-2-plugins security update

2024-02-12 10:30:15

redos

ROS-20240411-08

2024-04-11 00:00:00

qualysblog

2024 Midyear Threat Landscape Review

2024-08-06 13:00:00

Oracle Critical Patch Update, July 2024 Security Update Review

2024-07-17 14:34:50

oracle

Oracle Critical Patch Update Advisory - July 2024

2024-07-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.97

Percentile

99.8%

JSON

Related for 9A194021-64F2-52A4-8852-B218D3699FB9