2 matches found
workflow-cps-global-lib: OS command execution through crafted SCM contents
A flaw was found in Jenkins. The JenkinsPipeline: Shared Groovy Libraries uses the same checkout directories for distinct SCMs for Pipeline libraries. This flaw allows attackers with item/configure permission to invoke arbitrary OS commands on the controller through crafted SCM contents. This...
Palo Alto Networks PAN-OS Management Interface Command Injection Vulnerability
Palo Alto Networks PAN-OS is a set of operating systems developed for its firewall appliances. An OS command injection vulnerability exists in the Palo Alto Networks PAN-OS management interface that could be exploited by an attacker to execute arbitrary operating system commands...