Security

Jenkins CLI RMI Java Deserialization

Leave a comment

This Metasploit module exploits a vulnerability in Jenkins. An unsafe deserialization bug exists on the Jenkins master, which allows remote arbitrary code execution. Authentication is not required to exploit this vulnerability.

Leave a Reply