Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2024/11/05 12:7 p.m.4 views

jenkins-plugin/script-security: sandbox bypass via crafted constructor bodies

A sandbox bypass vulnerability was found in the Jenkins Script Security Plugin involving crafted constructor bodies, enabling the circumvention of security restrictions. With crafted constructor bodies, this flaw allows authenticated attackers to define and execute sandboxed scripts, including...

9.8CVSS6.1AI score0.48081EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/07/17 6:49 p.m.7 views

jenkins-plugin/script-security: sandbox bypass via crafted constructor bodies

A sandbox bypass vulnerability was found in the Jenkins Script Security Plugin involving crafted constructor bodies, enabling the circumvention of security restrictions. With crafted constructor bodies, this flaw allows authenticated attackers to define and execute sandboxed scripts, including...

9.8CVSS6.1AI score0.48081EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/06/05 2:47 p.m.5 views

jenkins-plugin/script-security: sandbox bypass via crafted constructor bodies

A sandbox bypass vulnerability was found in the Jenkins Script Security Plugin involving crafted constructor bodies, enabling the circumvention of security restrictions. With crafted constructor bodies, this flaw allows authenticated attackers to define and execute sandboxed scripts, including...

9.8CVSS6.1AI score0.48081EPSS
Exploits0References6
OSV
OSV
added 2022/05/24 5:10 p.m.6 views

GHSA-QVHF-3567-PC4V Sandbox bypass vulnerability in Script Security Plugin

Sandbox protection in Script Security Plugin 1.70 and earlier can be circumvented through: - Crafted constructor calls and bodies due to an incomplete fix of SECURITY-582 - Crafted method calls on objects that implement GroovyInterceptable This allows attackers able to specify and run sandboxed...

8.8CVSS6.2AI score0.01006EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/06/29 2:37 p.m.3 views

jenkins-script-security-plugin: sandbox protection bypass via crafted constructor calls and crafted constructor bodies

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted constructor calls and crafted constructor bodies...

8.8CVSS5.8AI score0.01006EPSS
Exploits0References5
Rows per page
Query Builder