CVE-2016-9299

2016-11-15T10:47:41
ID RH:CVE-2016-9299
Type redhatcve
Reporter redhat.com
Modified 2019-10-12T00:55:37

Description

The remoting module in Jenkins before 2.32 and LTS before 2.19.3 allows remote attackers to execute arbitrary code via a crafted serialized Java object, which triggers an LDAP query to a third-party server.

Mitigation

<https://github.com/jenkinsci-cert/SECURITY-218>