CVE-2024-43044

8.8HIGH

Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent processes to read arbitrary files from the Jenkins controller file system by using the `ClassLoaderProxy#fetchJar` method in the Remotin

Опубликовано: 8/7/2024Обновлено: 3/14/2025
Посмотреть на NVDПосмотреть на MITRE

Описание

Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent processes to read arbitrary files from the Jenkins controller file system by using the `ClassLoaderProxy#fetchJar` method in the Remoting library.

ИИ-АнализНа базе ИИ

Затронутые продукты

jenkinsjenkins
jenkinsjenkins

Ссылки