CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2024-23904

unknowncovered by 1 sourcefirst seen 2024-01-24
Affects Jenkins Core Affects plugin: Git server Affects plugin: GitLab Branch Source Affects plugin: Log Command Affects plugin: Matrix Project Affects plugin: Qualys Policy Compliance Scanning Connector Affects plugin: Red Hat Dependency Analytics

CSIRTS triage

What
Multiple vulnerabilities affecting various Jenkins plugins have been identified.
Who is affected
Users of Jenkins Core and its plugins.
Urgency
Remediation is urgent as exploitation is confirmed.
Action
Apply the security updates as per the advisory.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2024-23904

Get an email if CVE-2024-23904 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2024-23904

CVE.org record

Embed the live status

CVE-2024-23904 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2024-23904 status](https://www.csirts.com/badge/CVE-2024-23904)](https://www.csirts.com/cve/CVE-2024-23904)