CVE-2012-4438

CVE-2012-4438 is a high vulnerability published on November 18, 2019. Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code.

CVE-2012-4438 was first published in the National Vulnerability Database on November 18, 2019, with the most recent update on November 21, 2024. EchelonGraph re-ingests CVE updates from NVD on a 2-hour cycle, so this page reflects the latest published state.

CVE-2012-4438 has a CVSS v3 base score of 8.8 (NVD).

Patch to the fixed version published by the affected vendor. Where vendor advisories exist for CVE-2012-4438, EchelonGraph cross-links them in the Vendor Advisories panel below — those typically contain the canonical remediation steps, fixed version numbers, and any vendor-specific mitigations.