Description
Jenkins before versions 2.44, 2.32.2 is vulnerable to a remote code execution vulnerability involving the deserialization of various types in javax.imageio in XStream-based APIs (SECURITY-383).
Remediation
References
Related Vulnerabilities
WordPress Plugin Woocommerce Categories in gallery format Cross-Site Scripting (1.0.1)
WordPress Plugin Contact Form 7 Multi-Step Forms Security Bypass (3.0.8)
Oracle JRE CVE-2023-21835 Vulnerability (CVE-2023-21835)
Ampache Deserialization of Untrusted Data Vulnerability (CVE-2017-18375)
WordPress Plugin WPS Cleaner Multiple Cross-Site Request Forgery Vulnerabilities (1.4.4)