Jenkins 2.540 and earlier, LTS 2.528.2 and earlier does not properly close HTTP-based CLI connections when the connection stream becomes corrupted, allowing unauthenticated attackers to cause a denial of service.
Credits
Camilo Vera Vidales (https://www.linkedin.com/in/camilo-vera-vidales/)
