CVE-2024-23897 Archives

Alert: Jenkins Vulnerabilities Open Servers To RCE Attacks

Wajahat Raja | February 5, 2024 | CLI Vulnerability, Continuous Integration Security, Cross-Site Scripting (XSS) Attacks, CSRF Protection Bypass, CVE-2024-23897, Cybersecurity News, cybersecurity risks, Jenkins Security Patch, Jenkins Vulnerabilities, Remote Code Execution (RCE), Resource Root URLs

Jenkins, an influential Java-based open-source automation platform celebrated for its extensive plugin ecosystem and continuous integration capabilities, recently unveiled a series of vulnerabilities in its offerings. One particularly critical vulnerability, carrying the ...

TuxCare

Jenkins Arbitrary File Read Vulnerability (CVE-2024-23897) Notice

NSFOCUS | January 29, 2024 | Arbitrary File Read Vulnerability, Blog, CVE-2024-23897, Emergency Response, jenkins

Overview Recently, NSFOCUS CERT detected that Jenkins issued a security announcement and fixed an arbitrary file reading vulnerability in the Jenkins CLI (CVE-2024-23897). Since one function of its CLI command parser is ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.