CVE-2017-1000355

CVE-2017-1000355

EPSS 1.8%

Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an XStream: Java crash when trying to instantiate void/Void.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://jenkins.io/security/advisory/2017-04-26/http://www.securityfocus.com/bid/98066