Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJenkinsCVELIST:CVE-2019-10328
HistoryMay 31, 2019 - 2:20 p.m.

CVE-2019-10328

2019-05-3114:20:19
jenkins
www.cve.org

9.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.3%

JSON

Jenkins Pipeline Remote Loader Plugin 1.4 and earlier provided a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.

CNA Affected

[
  {
    "product": "Jenkins Pipeline Remote Loader Plugin",
    "vendor": "Jenkins project",
    "versions": [
      {
        "status": "affected",
        "version": "1.4 and earlier"
      }
    ]
  }
]

Related

veracode 1
github 1
nvd 1
redhatcve 1
prion 1
osv 2
cve 1
nessus 1
redhat 1
veracode
veracode
Sandbox Restrictions Bypass
2019-07-08 00:06:47
github
github
Unsafe entry in Script Security list of approved signatures in Pipeline Remote Loader Plugin
2022-05-24 22:00:03
nvd
nvd
CVE-2019-10328
2019-05-31 15:29:00
redhatcve
redhatcve
CVE-2019-10328
2020-12-06 11:53:19
prion
prion
Code injection
2019-05-31 15:29:00
osv
osv
CVE-2019-10328
2019-05-31 15:29:00
Unsafe entry in Script Security list of approved signatures in Pipeline Remote Loader Plugin
2022-05-24 22:00:03
cve
cve
CVE-2019-10328
2019-05-31 15:29:00
nessus
nessus
RHEL 7 : OpenShift Container Platform 4.1 jenkins-2-plugins (RHSA-2019:1636)
2019-07-05 00:00:00
redhat
redhat
(RHSA-2019:1636) Important: OpenShift Container Platform 4.1 jenkins-2-plugins security update
2019-07-03 11:47:24

9.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.3%

JSON
Related for CVELIST:CVE-2019-10328
veracode1github1nvd1redhatcve1prion1osv2cve1nessus1redhat1