CVE-2024-23897: Jenkins CLI Arbitrary File Read

Score: 9.8
CRITICAL
Published: 2024-01-24Affected: Jenkins <= 2.441 / LTS <= 2.426.2CWE-22 β†—

Can Jenkins be exploited to read files?

Jenkins CLI processes @-prefixed arguments as file paths and reads their contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller. When combined with binary secrets, enables full RCE.

Impact & Exploitation

Exploited in the wild. Public PoC available. Enables reading Jenkins secrets, API tokens, and SSH keys leading to complete CI/CD pipeline compromise.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9.8
SeverityCRITICAL
CWECWE-22
Published2024-01-24

Tags

jenkinsci-cdfile-readrce

Quick Links

Is your system affected?

Precogs AI detects Jenkins CLI Arbitrary File Read in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2024-23897 Jenkins CLI Arbitrary File Read don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo