Lucene search
GoogleOSV:GHSA-2CM5-F78C-H2C8HistoryMay 13, 2022 - 1:36 a.m.
Missing permission checks in Jenkins Distributed Fork Plugin
2022-05-1301:36:51
Google
osv.dev
2
It was found that there were no permission checks performed in the Distributed Fork plugin before and including 1.5.0 for Jenkins that provides the dist-fork CLI command beyond the basic check for Overall/Read permission, allowing anyone with that permission to run arbitrary shell commands on all connected nodes.
Related
veracode
veracode
Arbitrary Code Execution Via Bypassing Permission Check
2017-03-21 05:57:13
prion
prion
Command injection
2018-07-27 20:29:00
cvelist
cvelist
CVE-2017-2652
2017-03-20 00:00:00
cve
cve
CVE-2017-2652
2018-07-27 20:29:00
github
github
Missing permission checks in Jenkins Distributed Fork Plugin
2022-05-13 01:36:51
nvd
nvd
CVE-2017-2652
2018-07-27 20:29:00