Cybersecurity Alerts

Jenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability

A code execution vulnerability exists in the Stapler web framework used by Jenkins

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-502

References

• https://nvd.nist.gov/vuln/detail/CVE-2018-1000861