Sonicwall Signatures
Go to
All Categories
list.
CloudBees Jenkins Insecure Deserialization
Category:
WEB-ATTACKS
Multiple unspecified API endpoints in CloudBees Jenkins before 1.650 and LTS before 1.642.2 allow remote authenticated users to execute arbitrary code via serialized data in an XML file, related to XStream and groovy.util.Expando.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0792
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0
