Lucene search

K
osvGoogleOSV:GHSA-99MF-F3QH-WQRP
HistoryMay 24, 2022 - 5:08 p.m.

Improper Input Validation in Jenkins Pipeline: Groovy Plugin

2022-05-2417:08:46
Google
osv.dev
7
jenkins
pipeline
groovy plugin
sandbox protection
circumvention
cps-transformed methods

EPSS

0.001

Percentile

43.5%

Sandbox protection in Jenkins Pipeline: Groovy Plugin 2.78 and earlier can be circumvented through default parameter expressions in CPS-transformed methods.

EPSS

0.001

Percentile

43.5%