Description
This module exploits CVE-2016-0792 a vulnerability in Jenkins versions older than 1.650 and Jenkins LTS versions older than 1.642.2 which is caused by unsafe deserialization in XStream with Groovy in the classpath, which allows remote arbitrary code execution. The issue affects default installations. Authentication is not required to exploit the vulnerability.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use exploit/multi/http/jenkins_xstream_deserializemsf undefined(jenkins_xstream_deserialize) > show actions ...actions...msf undefined(jenkins_xstream_deserialize) > set ACTION < action-name >msf undefined(jenkins_xstream_deserialize) > show options ...show and set options...msf undefined(jenkins_xstream_deserialize) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub