CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2024-28157

unknowncovered by 1 sourcefirst seen 2024-03-06
Affects plugin: AppSpider Affects plugin: Bitbucket Branch Source Affects plugin: Build Monitor View Affects plugin: Delphix Affects plugin: docker-build-step Affects plugin: GitBucket Affects plugin: HTML Publisher Affects plugin: iceScrum Affects plugin: MQ Notifier Affects plugin: OWASP Dependency-Check Affects plugin: Subversion Partial Release Manager Affects plugin: Trilead API

CSIRTS triage

What
Multiple plugins in Jenkins are affected by security vulnerabilities.
Who is affected
All Jenkins installations using the affected plugins.
Urgency
Remediation is urgent due to the potential for exploitation, though severity is currently unknown.
Action
Upgrade the affected plugins to the latest versions.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2024-28157

Get an email if CVE-2024-28157 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2024-28157

CVE.org record

Embed the live status

CVE-2024-28157 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2024-28157 status](https://www.csirts.com/badge/CVE-2024-28157)](https://www.csirts.com/cve/CVE-2024-28157)