Lucene search

K

[email protected]NVD:CVE-2024-23897

HistoryJan 24, 2024 - 6:15 p.m.

CVE-2024-23897

2024-01-2418:15:09

[email protected]

web.nvd.nist.gov

jenkins

vulnerability

unauthenticated

file read

cli

parser

arbitrary files

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.96 High

EPSS

Percentile

99.5%

Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an ‘@’ character followed by a file path in an argument with the file’s contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.

Affected configurations

NVD

Node

jenkinsjenkinsRange<2.426.3lts

OR

jenkinsjenkinsRange<2.442-

References

packetstormsecurity.com/files/176839/Jenkins-2.441-LTS-2.426.3-CVE-2024-23897-Scanner.html

packetstormsecurity.com/files/176840/Jenkins-2.441-LTS-2.426.3-Arbitrary-File-Read.html

www.openwall.com/lists/oss-security/2024/01/24/6

www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314

www.sonarsource.com/blog/excessive-expansion-uncovering-critical-security-vulnerabilities-in-jenkins/

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.96 High

EPSS

Percentile

99.5%

Related for NVD:CVE-2024-23897

githubexploit24 zdt1 hivepro1 metasploit1 cvelist1 github1 osv3 cve1 cgr1 packetstorm2 redhatcve1 alpinelinux1 veracode1 prion1 trendmicroblog1 wolfi1 exploitdb1 rapid7blog1 freebsd1 nessus5 kitploit1 thn1 redhat3 redos1