CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2023-36478

highcovered by 2 sourcesfirst seen 2023-10-18
A remote anonymous attacker can exploit multiple vulnerabilities in Eclipse Jetty to conduct a Denial of Service attack.

CSIRTS triage

What
Multiple vulnerabilities affect Jenkins Core.
Who is affected
Deployments of Jenkins Core are affected.
Urgency
Remediation is urgent due to confirmed exploitation of the vulnerabilities.
Action
Update to the latest version of Jenkins Core to mitigate the vulnerabilities.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2023-36478

Get an email if CVE-2023-36478 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (2)

External references

NVD record for CVE-2023-36478

CVE.org record

Embed the live status

CVE-2023-36478 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2023-36478 status](https://www.csirts.com/badge/CVE-2023-36478)](https://www.csirts.com/cve/CVE-2023-36478)