Description
Jenkins before 1.583 and LTS before 1.565.3 allows remote attackers to execute arbitrary code via a crafted packet to the CLI channel.
Remediation
References
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01
https://access.redhat.com/errata/RHSA-2016:0070
Related Vulnerabilities
CVE-2021-41079 Vulnerability in maven package org.apache.tomcat:tomcat
CVE-2023-35141 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2023-5763 Vulnerability in maven package org.glassfish.main.orb:orb-connector
CVE-2023-27490 Vulnerability in npm package next-auth
CVE-2019-9658 Vulnerability in maven package com.puppycrawl.tools:checkstyle