Armis Vulnerability Intelligence Database

Description Preview

The vulnerability in Jenkins versions 2.441 and earlier, LTS 2.426.2 and earlier, arises from a feature of the CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents. This behavior can be exploited by unauthenticated attackers to access and read arbitrary files on the Jenkins controller file system, potentially leading to unauthorized disclosure of sensitive information.

Overview

This vulnerability, identified as CVE-2024-23897, affects Jenkins versions 2.441 and earlier, as well as LTS 2.426.2 and earlier. The issue allows unauthenticated attackers to read arbitrary files on the Jenkins controller file system by manipulating the CLI command parser feature.

Remediation

To remediate this vulnerability, users and administrators are advised to update their Jenkins installations to versions that include the necessary security patches. Specifically, upgrading to versions 2.442, 2.426.3, or later will address the issue and prevent unauthorized file access through the CLI command parser feature. It is crucial to regularly monitor security advisories from Jenkins and apply updates promptly to mitigate the risk of exploitation.

References

Early Warning

Armis Early Warning customers received an advanced alert on this vulnerability.

Armis Alert Date: Jan 26, 2024
CISA KEV Date: Aug 19, 2024

206days early

Learn More

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

Manufacturing
Manufacturing
Finance and Insurance
Finance and Insurance
Public Administration
Public Administration
Professional, Scientific, & Technical Services
Professional, Scientific, & Technical Services
Health Care & Social Assistance
Health Care & Social Assistance
Transportation & Warehousing
Transportation & Warehousing
Retail Trade
Retail Trade
Management of Companies & Enterprises
Management of Companies & Enterprises
Other Services (except Public Administration)
Other Services (except Public Administration)
Arts, Entertainment & Recreation
Arts, Entertainment & Recreation
Educational Services
Educational Services
Information
Information
Utilities
Utilities
Accommodation & Food Services
Accommodation & Food Services
Wholesale Trade
Wholesale Trade
Administrative, Support, Waste Management & Remediation Services
Administrative, Support, Waste Management & Remediation Services
Agriculture, Forestry Fishing & Hunting
Agriculture, Forestry Fishing & Hunting
Construction
Construction
Mining
Mining
Real Estate Rental & Leasing
Real Estate Rental & Leasing

^{CVE-2024-23897:}CVE-2024-23897 is a vulnerability in Jenkins versions 2.441 and earlier, LTS 2.426.2 and earlier, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.