Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2024-23897
PUBLISHEDJenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by...
- Vendor
- Jenkins Project
- Product
- Jenkins
- Published
- Jan 24, 2024
- EPSS
- —
Description
Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
References
- https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314
- https://www.sonarsource.com/blog/excessive-expansion-uncovering-critical-security-vulnerabilities-in-jenkins/
- http://www.openwall.com/lists/oss-security/2024/01/24/6
- http://packetstormsecurity.com/files/176839/Jenkins-2.441-LTS-2.426.3-CVE-2024-23897-Scanner.html
- http://packetstormsecurity.com/files/176840/Jenkins-2.441-LTS-2.426.3-Arbitrary-File-Read.html
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Aug 19, 2024 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/javascript/cves/2024/CVE-2024-23897.yaml | Apr 25, 2025 |
| Nessus | https://www.tenable.com/plugins/nessus/194437 | Apr 30, 2024 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2024-09-30 16:38:28 UTC · 8 stars
POC - Jenkins File Read Vulnerability - CVE-2024-23897
github · Created 2024-05-16 09:32:51 UTC · 8 stars
Poc para explotar la vulnerabilidad CVE-2024-23897 en versiones 2.441 y anteriores de Jenkins, mediante la cual podremos leer archivos internos del sistema sin estar autenticados
github · Created 2024-05-08 02:28:46 UTC · 5 stars
github · Created 2024-02-19 02:29:12 UTC · 2 stars
Perform with massive Jenkins Reading-2-RCE
github · Created 2024-02-16 07:16:04 UTC · 26 stars
POC for CVE-2024-23897 Jenkins File-Read
github · Created 2024-02-07 15:07:37 UTC · 3 stars
Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.
github · Created 2024-02-04 20:56:42 UTC · 18 stars
Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)
github · Created 2024-01-29 04:41:53 UTC · 5 stars
Jenkins POC of Arbitrary file read vulnerability through the CLI can lead to RCE
github · Created 2024-01-28 01:57:06 UTC · 16 stars
This repository presents a proof-of-concept of CVE-2024-23897
github · Created 2024-01-27 19:34:48 UTC · 78 stars
CVE-2024-23897 - Jenkins 任意文件读取 利用工具
github · Created 2024-01-27 13:27:57 UTC · 5 stars
on this git you can find all information on the CVE-2024-23897
github · Created 2024-01-27 04:35:20 UTC · 2 stars
Scanner for CVE-2024-23897 - Jenkins
github · Created 2024-01-26 19:00:03 UTC · 73 stars
CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.
github · Created 2024-01-26 08:02:00 UTC · 100 stars
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Proof of Concept Exploit Available
-
Detected by Nessus
-
Exploit Used in Malware
-
Added to KEVIntel
-
Detected by Nuclei