CVE-2017-1000403

2018-01-25T21:29:01
ID CVE-2017-1000403
Type cve
Reporter NVD
Modified 2018-02-15T12:56:13

Description

Jenkins Speaks! Plugin, all current versions, allows users with Job/Configure permission to run arbitrary Groovy code inside the Jenkins JVM, effectively elevating privileges to Overall/Run Scripts.