Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2019-1003001

🗓️ 22 Jan 2019 14:00:00Reported by jenkinsType 
cve
 cve🔗 web.nvd.nist.gov👁 189 Views🌐 WEB

sandbox bypass vulnerability in Pipeline: Groovy Plugin 2.61 allows arbitrary code execution

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		Jenkins 2.137 and Pipeline Groovy Plugin 2.61 - ACL Bypass and Metaprogramming RCE Exploit
19 Mar 201900:00
zdt
Gitee		Exploit for CVE-2019-1003000
18 Jul 202023:27
gitee
Gitee		Exploit for CVE-2019-1003000
31 Mar 202111:15
gitee
Gitee		Exploit for CVE-2019-1003000
7 Feb 202115:45
gitee
Gitee		Exploit for CVE-2019-1003000
19 Jan 202017:01
gitee
GithubExploit		Exploit for CVE-2019-1003000
15 Feb 201905:59
githubexploit
Circl		CVE-2019-1003001
19 Feb 201900:00
circl
CNVD		Unspecified Vulnerability in CloudBees Pipeline Groovy Plugin
24 Jan 201900:00
cnvd
Check Point Advisories		Jenkins Pipeline Groovy Remote Code Execution (CVE-2019-1003001)
11 Feb 202000:00
checkpoint_advisories
Cvelist		CVE-2019-1003001
22 Jan 201914:00
cvelist
Rows per page
NVD
Node
jenkinspipeline:_groovyRange2.61jenkins
Node
redhatopenshift_container_platformMatch3.11
[
  {
    "product": "Pipeline: Groovy Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "status": "affected",
        "version": "2.61 and earlier"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
qquery paramsecurityRealm/user/admin/search/indexJenkins search endpoint used to detect Jenkins version and ACL state (possible attack vector for targeting vulnerable instances)
apiUrlquery paramsecurityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPasswordACL bypass path used in PoC to reach descriptorByName and trigger script execution flow via query parameters
loginquery paramsecurityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPasswordACL bypass path used in PoC to reach descriptorByName and trigger script execution flow via query parameters
passwordquery paramsecurityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPasswordACL bypass path used in PoC to reach descriptorByName and trigger script execution flow via query parameters
valuequery paramsecurityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompileCheckScriptCompile endpoint used to compile scripts (Groovy sandbox bypass context) and can carry payload via value parameter

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 02:09Current
8.8High risk
Vulners AI Score8.8
CVSS 26.5
CVSS 3.18.8
EPSS0.86224
cve-2019-1003001sandbox bypasspipelinegroovy pluginvulnerabilitycode executionnvd
189