Launch Week Day 1: Announcing Security Design Review

Jenkins allows Execution of Code by Opening a JRMP Listener

GHSA-j7q5-h445-f7pc · CVE-2016-0788

Published May 14, 2022 · Modified Mar 13, 2025

Description

The remoting module in Jenkins before 1.650 and LTS before 1.642.2 allows remote attackers to execute arbitrary code by opening a JRMP listener.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes