Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2022/10/19 4:15 p.m.3 views

CVE-2022-43402

A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Pipeline: Groovy Plugin 2802.v5ea628154bc2 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection...

9.9CVSS6AI score
Exploits0References2
CNVD
CNVDadded 2018/12/12 12:0 a.m.3 views

CloudBees Jenkins Pipeline: Unspecified Vulnerability in Groovy Plugin

CloudBees Jenkins formerly known as Hudson Labs is a set of Java-based continuous integration tools from CloudBees, Inc. that are used to monitor order repetitive work.Pipeline:Groovy Plugin is one of the process build plugins in the Java-based continuous integration tools. . Pipeline: Groovy...

8.8CVSS7.8AI score0.01639EPSS
Exploits0References1
Veracode
Veracodeadded 2018/01/29 1:28 a.m.17 views

Elevation Of Privileges

speaks is vulnerable to elevation of privileges. Users who have the Job/Configure permission can run Groovy code inside the Jenkins JVM, elevating their privilege to Overall/Run Scripts...

8.8CVSS8.6AI score0.00965EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder