Vulnerability Details : CVE-2017-1000355
Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an XStream: Java crash when trying to instantiate void/Void.
Threat overview for CVE-2017-1000355
Top countries where our scanners detected CVE-2017-1000355
Top open port discovered on systems with this issue 22
IPs affected by CVE-2017-1000355 2,473
Threat actors abusing to this issue? Yes
Find out if you* are affected by CVE-2017-1000355!
*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2017-1000355
Probability of exploitation activity in the next 30 days: 0.08%
CVSS scores for CVE-2017-1000355
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
CWE ids for CVE-2017-1000355
The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.Assigned by: email@example.com (Primary)