CVE-2024-54003 — Vulnetix

CVE-2024-54003 PUBLISHED

Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.

EPSS 41.12% · 97.5th percentile

Risk Scores

EPSS Score

41.12%

97.5th percentile

Affected Products

Vendor	Product	Versions
Jenkins	Jenkins Jenkins Simple Queue Plugin <1.4.5
Red Hat	Red Hat Enterprise Linux

Exploit Intelligence

CIRCL seen: CVE-2024-54003 (circl-sighting)
CIRCL seen: CVE-2024-54003 (circl-sighting)
CIRCL seen: CVE-2024-54003 (circl-sighting)
Jenkins Security Advisory 2024-11-27 (circl)

Timeline

Nov 27, 2024 CVE Published
Nov 27, 2024 PoC Published
Nov 27, 2024 PoC Published
Nov 28, 2024 EPSS Score
Dec 16, 2024 EPSS Score
Jan 1, 2025 Coalition ESS Score
Jan 1, 2025 PoC Published
Jan 2, 2025 EPSS Score
Jan 19, 2025 EPSS Score
Feb 22, 2025 Coalition ESS Score
Feb 23, 2025 EPSS Score
Mar 12, 2025 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3563.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3563 advisory
https://www.jenkins.io/security/advisory/2024-11-27/ advisory
https://access.redhat.com/errata/RHSA-2025:2219 advisory
https://access.redhat.com/errata/RHSA-2025:2220 advisory
https://access.redhat.com/errata/RHSA-2025:2218 advisory
https://access.redhat.com/errata/RHSA-2025:2221 advisory
https://access.redhat.com/errata/RHSA-2025:2223 advisory
https://access.redhat.com/errata/RHSA-2025:2222 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›