VDB

GCVE-110-MAGEIA-2016-406

GCVE-110-MAGEIA-2016-406
Advisory Published
Vulnetix · Advisory published November 30, 2016
An unauthenticated remote code execution vulnerability allowed attackers to transfer a serialized Java object to the Jenkins CLI, making Jenkins connect to an attacker-controlled LDAP server, which in turn can send a serialized payload leading to code execution, bypassing existing protection mechanisms. (CVE-2016-9299)

Affected Products

VendorProductVersionsPlatforms
Mageiajenkins-remoting0 (affected), 2.53.4-1.mga5 (unaffected)

Browse GCVE Records

72,409 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›