CVE-2024-43044

This repository contains a functional exploit for CVE-2024-43044, which leverages an arbitrary file read vulnerability in Jenkins to forge a 'remember-me' cookie for admin access. The exploit includes multiple Java classes to handle cookie forgery, remote file reading, and script console execution.

This repository provides a functional PoC for CVE-2024-43044, which involves modifying the `RemoteClassLoader.class` in Jenkins to achieve arbitrary file read via a crafted JAR file. The exploit requires prior knowledge of the target node's secret and name.

This repository contains a Python script that scans Jenkins instances for CVE-2024-43044 by checking version headers against known vulnerable ranges. It does not exploit the vulnerability but detects potentially vulnerable versions.

This repository provides a Java agent that mitigates CVE-2024-43044 by transforming the vulnerable `RemoteClassLoader$ClassLoaderProxy` class to block the `fetchJar` method, preventing exploitation. It includes functional code to apply the workaround as a Java agent or standalone tool.

This repository contains a functional exploit for CVE-2024-43044, an arbitrary file read vulnerability in Jenkins. The exploit reads the credentials.xml file and decrypts it using secret keys obtained via the vulnerability.