Lucene search
GoogleOSV:GHSA-FWQR-3PVP-PJWQHistoryMay 13, 2022 - 1:36 a.m.
Deserialization of Untrusted Data in Jenkins
2022-05-1301:36:54
Google
osv.dev
59
0.006 Low
EPSS
Percentile
77.7%
Jenkins before versions 2.44, 2.32.2 is vulnerable to a remote code execution vulnerability involving the deserialization of various types in javax.imageio in XStream-based APIs (SECURITY-383).
Related
ubuntucve
ubuntucve
CVE-2017-2608
2018-05-15 00:00:00
cvelist
cvelist
CVE-2017-2608
2018-05-15 20:00:00
seebug
seebug
Jenkins remote code execution vulnerability (CVE-2017-2608)
2017-02-06 00:00:00
redhatcve
redhatcve
osv
osv
CVE-2017-2608
2018-05-15 20:29:00
github
github
Deserialization of Untrusted Data in Jenkins
2022-05-13 01:36:54
prion
prion
Remote code execution
2018-05-15 20:29:00
nvd
nvd
CVE-2017-2608
2018-05-15 20:29:00
cve
cve
CVE-2017-2608
2018-05-15 20:29:00
hackerone
hackerone
ownCloud: Outdated Jenkins server hosted at OwnCloud.org
2017-02-24 08:22:00
nessus
nessus
freebsd
freebsd
jenkins -- multiple vulnerabilities
2017-02-01 00:00:00
openvas
openvas
Jenkins Multiple Vulnerabilities (Feb 2017) - Linux
2017-03-13 00:00:00
Jenkins Multiple Vulnerabilities (Feb 2017) - Windows
2017-03-13 00:00:00
impervablog
impervablog
Deserialization Attacks Surge Motivated by Illegal Crypto-mining
2018-01-24 17:45:08