3 matches found
CVE-2017-2650
It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permission in Jenkins...
CVE-2017-2650
It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permission in Jenkins...
CVE-2017-2650
The CVE-2017-2650 entry concerns the Jenkins Pipeline: Classpath Step plugin, where the Script Security sandbox can be bypassed. The issue affects Jenkins environments using this plugin, enabling users with SCM commit access or with permissions such as Job/Configure to bypass sandbox restrictions...