https://cybercrime.club/tags/jenkins/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usMon, 15 Jun 2026 23:08:59 -0400https://cybercrime.club/posts/jenkins-cve-2026-53435-config-xml-deserialization-rce-exploited/Mon, 15 Jun 2026 23:08:59 -0400https://cybercrime.club/posts/jenkins-cve-2026-53435-config-xml-deserialization-rce-exploited/CVE-2026-53435 (CVSS 9.0) is an unsafe-deserialization RCE in Jenkins' config.xml handling. Disclosed June 10, a public PoC is now driving in-the-wild exploitation against internet-exposed CI/CD servers. Patch to weekly 2.568 or LTS 2.555.3.vulnerabilities