Serial number: AV24-683
Date: November 27, 2024
On November 27, 2024, Jenkins published a security advisory to address vulnerabilities in the following products:
- Jenkins weekly – version 2.486 and prior
- Jenkins LTS – version 2.479.1 and prior
- Filesystem List Parameter Plugin – version 0.0.14 and prior
- Simple Queue Plugin – version 1.4.4 and prior
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
This alert was originated From: Canadian Centre for Cyber Security
https://cyber.gc.ca/en/alerts-advisories/jenkins-security-advisory-av24-683