0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 5 years have passed since last update.

[漏洞预警]CVE-2019-10392/Jenkins Git Client插件远程命令执行漏洞

Posted at

漏洞描述

近日Jenkins发布了官方安全公告:https://jenkins.io/security/advisory/2019-09-12/,指明修复了一个高危插件漏洞——Git Client Plugin(CVE-2019-10392).

CVE编号

CVE-2019-10392

漏洞威胁等级

高危

影响范围

Git Client Plugin <= 2.8.4

漏洞验证

使用payload进行任意命令执行

image.png

修复建议

升级至2.8.6或其以后版本

Reference

0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?