Exploit for CVE-2024-23898

  1. Home
  2. Uncategorized
  3. Exploit for CVE-2024-23898

Exploit for CVE-2024-23898

Jenkins 2.217 through 2.441 (both inclusive), LTS 2.222.1 through 2.426.2 (both inclusive) does not perform origin validation of requests made through the CLI WebSocket endpoint, resulting in a cross-site WebSocket hijacking (CSWSH) vulnerability, allowing attackers to execute CLI commands on the Jenkins controller.

Published: 2024-01-24

CVSS: 8.8

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Download Exploit for CVE-2024-23898 here:

Use Tor Browser to access .onion links.

Check our team here:

https://wednesfieldacademy.com/exploit-453-cve-2023-0466/

https://wednesfieldacademy.com/exploit-784-cve-2021-28550/

https://wednesfieldacademy.com/exploit-557-cve-2015-3035/

https://wednesfieldacademy.com/exploit-973-cve-2025-10280/

https://wednesfieldacademy.com/exploit-372-cve-2023-38180/

Latest News

Follow us on Social Media

Popular Pages

Contact Info

Wednesfield Academy
Lichfield Road
Wednesfield, Wolverhampton
West Midlands
WV11 3ES

T: 01902 558 222

postbox@wednesfieldacademy.co.uk

Monday - Thursday: 8:00 am - 4:00 pm
Friday: 8:00 am - 3:30 pm

Copyright 2026 © All Rights Reserved

 Privacy Notice

CEOP-1

Loading