VYPR
Critical severity9.8NVD Advisory· Published Jan 12, 2017· Updated Jun 17, 2026

CVE-2016-9299

CVE-2016-9299

Description

The remoting module in Jenkins before 2.32 and LTS before 2.19.3 allows remote attackers to execute arbitrary code via a crafted serialized Java object, which triggers an LDAP query to a third-party server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.jenkins-ci.main:jenkins-coreMaven
>= 2.20, < 2.322.32
org.jenkins-ci.main:jenkins-coreMaven
< 2.19.32.19.3

Affected products

4

Patches

Vulnerability mechanics

References

21

News mentions

0

No linked articles in our index yet.