CVE-2024-23904

Risk Scores

Affected Products

Exploit Intelligence

• CIRCL seen: CVE-2024-23904 (circl-sighting)
• CIRCL seen: CVE-2024-23904 (circl-sighting)
• CIRCL seen: CVE-2024-23904 (circl-sighting)
• CIRCL seen: CVE-2024-23904 (circl-sighting)
• Jenkins Security Advisory 2024-01-24 (circl)
• http://www.openwall.com/lists/oss-security/2024/01/24/6 (circl)

Timeline

• Jan 24, 2024 CVE Published
• Jan 24, 2024 PoC Published
• Jan 28, 2024 PoC Published
• Jan 31, 2024 EPSS Score
• Feb 18, 2024 PoC Published
• Feb 28, 2024 EPSS Score
• Mar 26, 2024 EPSS Score
• Apr 23, 2024 EPSS Score
• May 20, 2024 EPSS Score
• Jun 17, 2024 EPSS Score
• Jul 14, 2024 EPSS Score
• Aug 11, 2024 EPSS Score

References

• https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0199.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0199 advisory
• https://www.jenkins.io/security/advisory/2024-01-24/ advisory
• https://github.com/binganao/CVE-2024-23897/tree/main advisory
• https://access.redhat.com/errata/RHSA-2024:0775 advisory
• https://access.redhat.com/errata/RHSA-2024:0778 advisory
• https://access.redhat.com/errata/RHSA-2024:0776 advisory
• https://access.redhat.com/errata/RHSA-2024:3636 advisory
• https://access.redhat.com/errata/RHSA-2024:3634 advisory
• https://access.redhat.com/errata/RHSA-2024:3635 advisory
• https://access.redhat.com/errata/RHSA-2024:4597 advisory
• https://fortiguard.fortinet.com/outbreak-alert/jenkins-rce advisory