{"id":56885,"date":"2024-08-20T14:33:59","date_gmt":"2024-08-20T14:33:59","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/36235\/Critical-Jenkins-Vulnerability-Added-To-CISAs-Known-Vulnerabilities-Catalog.html"},"modified":"2024-08-20T14:33:59","modified_gmt":"2024-08-20T14:33:59","slug":"critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/","title":{"rendered":"Critical Jenkins Vulnerability Added To CISA&#8217;s Known Vulnerabilities Catalog"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2024\/08\/AdobeStock_430394878_Editorial_Use_Only.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>A critical vulnerability in the Jenkins open-source continuous integration\/continuous delivery (CI\/CD) automation server, which could lead to remote code execution (RCE) and theft of sensitive information, has been <a href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2024\/08\/19\/cisa-adds-one-known-exploited-vulnerability-catalog\" target=\"_blank\" rel=\"noreferrer noopener\">added to the Cybersecurity &amp; Infrastructure Security Agency\u2019s (CISA\u2019s) Known Exploited Vulnerabilities (KEV) catalog<\/a>.<\/p>\n<p>The addition comes after <a href=\"https:\/\/blogs.juniper.net\/en-us\/threat-research\/cve-2024-23897-enabled-ransomware-attack-on-indian-banks\" target=\"_blank\" rel=\"noreferrer noopener\">Juniper Networks found<\/a> that the RansomEXX ransomware group used the flaw to infiltrate Brontoo Technology Solutions, a collaborator with C-Edge Technologies, in a supply chain attack targeting C-Edge\u2019s customers, which are mostly cooperative and regional rural banks in India.<\/p>\n<p>These attacks were first discovered on Aug. 1, and Juniper Networks published its findings on the role of the Jenkins vulnerability on Aug. 13.<\/p>\n<p>The vulnerability, which is tracked as <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-23897\" target=\"_blank\" rel=\"noreferrer noopener\">CVE-2024-23897<\/a>, was first <a href=\"https:\/\/www.jenkins.io\/security\/advisory\/2024-01-24\/#SECURITY-3314\" target=\"_blank\" rel=\"noreferrer noopener\">patched and disclosed<\/a> in January 2024, and affects Jenkins 2.441 and earlier and LTS 2.426.2 and earlier. The flaw is fixed in versions 2.442 and LTS.426.3.<\/p>\n<h2>Overview of critical Jenkins RCE vulnerability CVE-2024-23897<\/h2>\n<p>CVE-2024-23897, which has a CVSS score of 9.8, is rooted in a feature of the args4j command parser used by Jenkins\u2019 built-in command line interface (CLI), which replaces an \u201c@\u201d character followed by a file path in an argument with the file\u2019s contents, according to the Jenkins advisory.<\/p>\n<p>This flaw enables attackers with Overall\/Read permissions to read the entirety of arbitrary files on the Jenkins controller file system, and those without Overall\/Read permissions to read the first few lines of files.<\/p>\n<p>However<a href=\"https:\/\/www.sonarsource.com\/blog\/excessive-expansion-uncovering-critical-security-vulnerabilities-in-jenkins\/\" target=\"_blank\" rel=\"noreferrer noopener\">, research by Sonar Source\u2019s Vulnerability Research Team<\/a>, which discovered the vulnerability, showed that the flaw could eventually lead to RCE through the reading of Jenkins secrets and escalation of privileges to administrator.<\/p>\n<p><a href=\"https:\/\/www.scmagazine.com\/brief\/critical-jenkins-rce-exploits-appear\" target=\"_blank\" rel=\"noreferrer noopener\">Multiple proof-of-concept RCE exploits<\/a> were released for Jenkins CVE-2024-23897 in the days following its disclosure, and Jenkins\u2019 advisory includes a non-exhaustive list of five possible RCE conditions, including methods to achieve RCE via resource root URLs, \u201cRemember me\u201d cookies, cross-site scripting (XSS) through build logs, and cross-site request forgery (CSRF) protection bypass.<\/p>\n<p>The vulnerability can also be leveraged to decrypt secrets stored in Jenkins, delete any items in Jenkins and download Java heap dumps of the Jenkins controller process or any agent process, which could potentially contain sensitive information.<\/p>\n<p>In January, after the vulnerability was disclosed, the Shadowserver foundation reported that nearly 45,000 internet-exposed Jenkins servers were vulnerable to CVE-2024-23897. As of August 18, <a href=\"https:\/\/dashboard.shadowserver.org\/statistics\/combined\/time-series\/?date_range=7&amp;source=http_vulnerable&amp;source=http_vulnerable6&amp;tag=cve-2024-23897%2B&amp;dataset=unique_ips&amp;limit=1000&amp;group_by=geo&amp;style=stacked\" target=\"_blank\" rel=\"noreferrer noopener\">Shadowserver\u2019s dashboard<\/a> showed more than 28,000 servers still remain vulnerable to exploitation.<\/p>\n<p>READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/36235\/Critical-Jenkins-Vulnerability-Added-To-CISAs-Known-Vulnerabilities-Catalog.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":56886,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[6978],"class_list":["post-56885","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlinegovernmentusaflaw"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Critical Jenkins Vulnerability Added To CISA&#039;s Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Critical Jenkins Vulnerability Added To CISA&#039;s Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2024-08-20T14:33:59+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2024\/08\/AdobeStock_430394878_Editorial_Use_Only.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Critical Jenkins Vulnerability Added To CISA&#8217;s Known Vulnerabilities Catalog\",\"datePublished\":\"2024-08-20T14:33:59+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/\"},\"wordCount\":409,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg\",\"keywords\":[\"headline,government,usa,flaw\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/\",\"name\":\"Critical Jenkins Vulnerability Added To CISA's Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg\",\"datePublished\":\"2024-08-20T14:33:59+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg\",\"width\":800,\"height\":533},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,government,usa,flaw\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinegovernmentusaflaw\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Critical Jenkins Vulnerability Added To CISA&#8217;s Known Vulnerabilities Catalog\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Critical Jenkins Vulnerability Added To CISA's Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/","og_locale":"en_US","og_type":"article","og_title":"Critical Jenkins Vulnerability Added To CISA's Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2024-08-20T14:33:59+00:00","og_image":[{"url":"https:\/\/files.scmagazine.com\/wp-content\/uploads\/2024\/08\/AdobeStock_430394878_Editorial_Use_Only.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Critical Jenkins Vulnerability Added To CISA&#8217;s Known Vulnerabilities Catalog","datePublished":"2024-08-20T14:33:59+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/"},"wordCount":409,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/08\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg","keywords":["headline,government,usa,flaw"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/","url":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/","name":"Critical Jenkins Vulnerability Added To CISA's Known Vulnerabilities Catalog 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/08\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg","datePublished":"2024-08-20T14:33:59+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/08\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2024\/08\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog.jpg","width":800,"height":533},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/critical-jenkins-vulnerability-added-to-cisas-known-vulnerabilities-catalog\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,government,usa,flaw","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinegovernmentusaflaw\/"},{"@type":"ListItem","position":3,"name":"Critical Jenkins Vulnerability Added To CISA&#8217;s Known Vulnerabilities Catalog"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56885","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=56885"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/56885\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/56886"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=56885"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=56885"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=56885"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}