CVE-2024-43044 | Jenkins prior LTS 2.452.3/2.470 Agent Process ClassLoaderProxy#fetchJar information disclosure

Posted by Angelo Barbosa | Aug 7, 2024 | CVE

A vulnerability classified as problematic was found in Jenkins. Affected by this vulnerability is the function ClassLoaderProxy#fetchJar of the component Agent Process. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-43044. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43044 | Jenkins prior LTS 2.452.3/2.470 Agent Process ClassLoaderProxy#fetchJar information disclosure

Related Posts

CVE-2024-43356 | bobbingwide oik Plugin up to 4.12.0 on WordPress cross-site request forgery

CVE-2024-27174 | Toshiba Tec e-Studio Multi-Function Peripheral path traversal

CVE-2023-34042 | VMware Spring Security up to 5.7.10/5.8.6/6.0.6/6.1.3 on Critical spring-security.xsd permission assignment

CVE-2023-48242 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 HTTP Request information disclosure