all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2024-23897: Possible Critical CI/CD Pipeline Jenkins Exploit

Add to bookmarks
Feb. 9, 2024, 5:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news




In a critical development for the cybersecurity and DevOps communities, the Uptycs Threat Research Team has thoroughly investigated CVE-2024-23897, a significant vulnerability discovered in Jenkins, the open-source automation server integral to CI/CD pipelines worldwide.


Article Link: CVE-2024-23897: Possible Critical CI/CD Pipeline Jenkins Exploit


1 post - 1 participant


Read full topic

article automation cd pipeline cd pipelines communities critical cve cve-2024-23897 cybersecurity development devops exploit jenkins link pipeline pipelines research server team threat threat research topic uptycs vulnerability

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Note to investors and security pros: drive innovation by going on the offensive 52 minutes ago | malware.news
article cybersecurity drive innovation +10
New network to target migrant smugglers in the digital domain an hour ago | malware.news
alliance april aspect counter +17
New High-Severity Vulnerability in Apache ActiveMQ Poses Risk of Unauthorized Access: CVE-2024-32114 an hour ago | malware.news
access activemq apache apache activemq +15
My impression of Botconf 2024 2 hours ago | malware.news
analysis botconf channel dotnet +13
Top 10 Free IoC Search & Enrichment Platforms 3 hours ago | malware.news
amp assets attacks breaches +33
ISC Stormcast For Friday, May 3rd, 2024 https://isc.sans.edu/podcastdetail/8966, (Fri, May 3rd) 10 hours ago | malware.news
topic
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360 13 hours ago | malware.news
article incident incident response link +4
Critical GitLab account takeover flaw added to CISA’s KEV Catalog 14 hours ago | malware.news
account account takeover article catalog +17
US warns of North Korean hackers using email security flaws for phishing attacks 15 hours ago | malware.news
article attacks change email +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote
View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US
View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA
View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco
View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com
View more jobs