Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-43401HistoryOct 19, 2022 - 4:15 p.m.
CVE-2022-43401
2022-10-1916:15:00
Alpine Linux Development Team
security.alpinelinux.org
20
0.001 Low
EPSS
Percentile
47.8%
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.16-community | noarch | jenkins | = 2.346.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | jenkins | = 2.361.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | jenkins | = 2.387.3-r0 | UNKNOWN |
| Alpine | edge-community | noarch | jenkins | = 2.440.2-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | = 2.440.3-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | jenkins | = 2.440.2-r0 | UNKNOWN |
Related
veracode
veracode
Sandbox Bypass
2022-10-20 11:23:44
cve
cve
CVE-2022-43401
2022-10-19 16:15:00
prion
prion
Security feature bypass
2022-10-19 16:15:00
cvelist
cvelist
CVE-2022-43401
2022-10-19 00:00:00
osv
osv
CVE-2022-43401
2022-10-19 16:15:10
redhatcve
redhatcve
CVE-2022-43401
2022-10-20 06:47:20
github
github
qualysblog
qualysblog
Oracle Patch Tuesday April 2023 Security Update Review
2023-04-19 11:47:21
redhat
redhat
nessus
nessus
RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2023:3198)
2024-04-28 00:00:00
RHCOS 4 : OpenShift Container Platform 4.10.51 (RHSA-2023:0560)
2024-01-24 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00