VDB
WID-SEC-W-2024-0199
WID-SEC-W-2024-0199
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux | ||
| Jenkins Jenkins 2.442 | ||
| Jenkins Jenkins <2.442 | ||
| Jenkins Jenkins <LTS 2.426.3 | ||
| Jenkins Jenkins LTS 2.426.3 |
Timeline
- Jan 24, 2024 CVE Published
- Aug 20, 2024 CVE Updated
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
- Mar 31, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0199.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0199 advisory
- https://www.jenkins.io/security/advisory/2024-01-24/ url
- https://github.com/binganao/CVE-2024-23897/tree/main url
- https://access.redhat.com/errata/RHSA-2024:0775 url
- https://access.redhat.com/errata/RHSA-2024:0778 url
- https://access.redhat.com/errata/RHSA-2024:0776 url
- https://access.redhat.com/errata/RHSA-2024:3636 url
- https://access.redhat.com/errata/RHSA-2024:3634 url
- https://access.redhat.com/errata/RHSA-2024:3635 url
- https://access.redhat.com/errata/RHSA-2024:4597 url
- https://fortiguard.fortinet.com/outbreak-alert/jenkins-rce url