CVE-2015-8103 PoC — CloudBees Jenkins CI 远程代码执行漏洞

Source

https://github.com/cved-sources/cve-2015-8103

Associated Vulnerability

Title:CloudBees Jenkins CI 远程代码执行漏洞 (CVE-2015-8103)
Description:CloudBees Jenkins是美国CloudBees公司的一款基于Java开发的开源的、可持续集成的自动化服务器，它主要用于监控持续的软件版本发布/测试项目和一些定时执行的任务。LTS（Long-Term Support）是CloudBees Jenkins的一个长期支持版本。 CloudBees Jenkins CI 1.638之前版本和LTS 1.625.2之前版本的Jenkins CLI子系统中存在安全漏洞。远程攻击者可借助特制的序列化Java对象利用该漏洞执行任意代码。

Description

cve-2015-8103

Readme

# CVE-2015-8103

This is part of Cved: *a tool to manage vulnerable docker containers.* 

Cved: https://github.com/git-rep-src/cved

Image source: https://github.com/cved-sources/cve-2015-8103

Image author: https://github.com/Medicean/VulApps/tree/master/j/jboss/1

File Snapshot


 [4.0K]  /data/pocs/44ff64462dc67a1b236eb7fb6031b793f373a6af
├── [ 202]  Dockerfile
└── [ 266]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!