Jenkins Remote Code Execution Vulnerability
The information has been provided by Gabriel Lawrence and Chris Frohoff.
* CloudBees Jenkins before 1.638 and LTS before 1.625.2
* CloudBees Jenkins after 1.638 and LTS after 1.625.2
Jenkins is prone to remote code-execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application.
Original release date: 11/25/2015
Last revised: 11/27/2015