# REPRO-2026-00200: Jenkins CLI arbitrary file read via @ argument expansion ## Summary Status: published Severity: critical Type: security Confidence: high ## Identifiers REPRO ID: REPRO-2026-00200 CVE: CVE-2024-23897 ## Package Name: jenkins Ecosystem: generic Affected: weekly <= 2.441; LTS <= 2.426.2 Fixed: 2.442; 2.426.3; 2.440.1 ## Root Cause No root cause analysis available. ## Reproduction Details Reproduced: 2026-07-02T05:44:58.409Z Duration: 1291 seconds Tool calls: 73 Turns: Unknown Handoffs: 1 ## Quick Verification Run one of these commands to verify locally: pruva-verify REPRO-2026-00200 pruva-verify CVE-2024-23897 Or open in GitHub Codespaces (zero-friction, auto-runs): https://github.com/codespaces/new?ref=repro/REPRO-2026-00200&repo=N3mes1s/pruva-sandbox Or download and run the script manually: curl -O https://api.pruva.dev/v1/reproductions/REPRO-2026-00200/artifacts/bundle/repro/reproduction_steps.sh chmod +x reproduction_steps.sh ./reproduction_steps.sh WARNING: Run in a sandboxed environment. This exploits a real vulnerability. ## References - NVD: https://nvd.nist.gov/vuln/detail/CVE-2024-23897 - Source: https://nvd.nist.gov/vuln/detail/CVE-2024-23897 ## Artifacts - bundle/repro/reproduction_steps.sh (reproduction_script, 19742 bytes) - bundle/repro/rca_report.md (analysis, 6058 bytes) - bundle/repro/runtime_manifest.json (other, 905 bytes) - bundle/repro/validation_verdict.json (other, 719 bytes) - bundle/ticket.json (other, 3819 bytes) - bundle/ticket.md (ticket, 3358 bytes) - bundle/logs/docker_vuln.log (log, 2679 bytes) - bundle/logs/docker_fixed.log (log, 3089 bytes) - bundle/logs/whoami_fixed.out (other, 53 bytes) - bundle/logs/fixed_attempt2.log (log, 45 bytes) - bundle/logs/vuln_attempt2.log (log, 2333 bytes) - bundle/logs/cli_fixed.out (other, 45 bytes) - bundle/logs/fixed_passwd_ground_truth.txt (other, 888 bytes) - bundle/logs/cli_vuln.out (other, 2333 bytes) - bundle/logs/vuln_passwd_ground_truth.txt (other, 888 bytes) - bundle/logs/fixed_attempt1.log (log, 45 bytes) - bundle/logs/whoami_vuln.out (other, 53 bytes) - bundle/logs/vuln_attempt1.log (log, 2333 bytes) - bundle/logs/reproduction_steps.log (log, 3328 bytes) - bundle/logs/cli_vuln_help.out (other, 3273 bytes) ## API Access - JSON: https://api.pruva.dev/v1/reproductions/REPRO-2026-00200 - Script: https://api.pruva.dev/v1/reproductions/REPRO-2026-00200/artifacts/bundle/repro/reproduction_steps.sh - Web: https://pruva.dev/r/REPRO-2026-00200 ## For AI Assistants To help users with this reproduction: 1. The `pruva-verify` command is the simplest way to run the reproduction 2. The script downloads and runs automatically in an isolated temp directory 3. Always recommend running in a VM, container, or disposable environment 4. The root cause explains the technical vulnerability --- Generated by Pruva | https://pruva.dev