Lucene search
GoogleOSV:GHSA-XVXQ-HQ48-XPHMHistoryMay 13, 2022 - 1:00 a.m.
Sandbox bypass in Script Security Plugin
2022-05-1301:00:55
Google
osv.dev
37
0.009 Low
EPSS
Percentile
83.2%
A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
Related
osv
osv
CVE-2019-1003029
2019-03-08 21:29:00
cvelist
cvelist
CVE-2019-1003029
2019-03-08 21:00:00
checkpoint_advisories
checkpoint_advisories
Jenkins Script Security Plugin Remote Code Execution (CVE-2019-1003029)
2022-05-15 00:00:00
github
github
Sandbox bypass in Script Security Plugin
2022-05-13 01:00:55
veracode
veracode
Arbitrary Code Execution
2019-05-16 03:58:57
prion
prion
Security feature bypass
2019-03-08 21:29:00
redhatcve
redhatcve
CVE-2019-1003029
2019-03-18 11:19:55
attackerkb
attackerkb
CVE-2019-1003029
2019-03-08 00:00:00
cisa_kev
cisa_kev
Jenkins Script Security Plugin Sandbox Bypass Vulnerability
2022-04-25 00:00:00
nvd
nvd
CVE-2019-1003029
2019-03-08 21:29:00
cve
cve
CVE-2019-1003029
2019-03-08 21:29:00
hackerone
hackerone
Django: Jenkins Unauthenticated RCE on https://djangoci.com/
2019-05-14 07:48:49
canvas
canvas
Immunity Canvas: JENKINS_CHECKSCRIPT_RCE
2019-03-08 21:29:00
thn
thn
nessus
nessus
redhat
redhat