>> Jenkins CLI RMI Java Deserialization

USER: deepcore // DATE: 2015-12-15 21:17 // MODIFIED: 2015-12-15

This Metasploit module exploits a vulnerability in Jenkins. An unsafe deserialization bug exists on the Jenkins master, which allows remote arbitrary code execution. Authentication is not required to exploit this vulnerability.