CVE-2024-52551

CVSS 3.1 Score 8 of 10 (high)

Details

Published Nov 13, 2024

Updated: Nov 15, 2024

CWE ID 276

Summary

CVE-2024-52551 is a vulnerability affecting Jenkins Pipeline: Declarative Plugin version 2.2214.vb_b_34b_2ea_9b_83 and earlier. This issue allows users with Item/Build permissions to restart previously built projects, even if the associated Jenkinsfile script is no longer approved. Attackers can exploit this vulnerability to execute unapproved code during the build process, potentially leading to security compromises. Jenkins servers using outdated plugins are at risk, and administrators are advised to upgrade to a patched version as soon as possible to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0eJARR
https://www.cve.org/CVERecord?id=CVE-2024-52551
https://nvd.nist.gov/vuln/detail/CVE-2024-52551

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-52551

CVSS 3.1 Score 8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations