RHSA-2024:8886HighCVSS 8.8
Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 Openshift Jenkins security update
🔗 CVE IDs covered (5)
📋 Description
CVE-2021-44549 — angus-mail: Enabling Secure Server Identity Checks for Safer SMTPS Communication CVE-2024-34144 — jenkins-plugin/script-security: sandbox bypass via crafted constructor bodies CVE-2024-38808 — spring-expression: Denial of service when processing a specially crafted Spring Expression Language expression CVE-2024-47803 — jenkins: Exposure of multi-line secrets through error messages CVE-2024-47804 — jenkins: Item creation restriction bypass vulnerability