I’M UNDER A CYBER ATTACK

Alert

Alert 2024-24 Critical RCE Vulnerability in Jenkins

A critical vulnerability has been reported in Jenkins, a widely used tool for automating software development tasks, identified as CVE-2024-43044 with a CVSSv3 score of 8.8. This vulnerability allows Jenkins agents to read arbitrary files from the controller.

A Proof of Concept (PoC) for this vulnerability has been published. The availability of a PoC significantly increases the risk of attacks on your company, as it makes it easier for attackers to exploit the flaw. Immediate action is required to mitigate the vulnerability, such as applying patches and reviewing security policies.

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.