Vulnetix
Try Vulnetix Request Demo
CVE-2023-27900 PUBLISHED

Jenkins LTS 2.375.3 and earlier uses the Apache Commons FileUpload library without specifying limits for the number of request parts introduced in version 1.5 for CVE-2023-24998 in hudson.util.MultipartFormDataParser, allowing attackers to trigger a denial of service.

EPSS 0.54% · 67.3th percentile

Risk Scores

EPSS Score
0.54%
67.3th percentile

Affected Products

VendorProductVersions
Bitnamijenkins0
Bitnamijenkins0

Timeline

References

Open in Interactive Console →