Lucene search
+L

10 matches found

nessus
nessus
added 2026/05/04 12:0 a.m.7 views

RHCOS 3 : Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins (RHSA-2019:0739)

The remote Red Hat Enterprise Linux CoreOS 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0739 advisory. - jenkins-plugin-script-security: Sandbox Bypass in Script Security Plugin SECURITY-1292 CVE-2019-1003005 -...

9.9CVSS6AI score0.75594EPSS
Exploits7References14
checkpoint_advisories
checkpoint_advisories
added 2022/05/15 12:0 a.m.81 views

Jenkins Script Security Plugin Remote Code Execution (CVE-2019-1003029)

A remote code execution vulnerability exists in Jenkins Script Security Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

6.5CVSS4.6AI score0.73854EPSS
Exploits3
nessus
nessus
added 2019/04/11 12:0 a.m.36 views

RHEL 7 : Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins (RHSA-2019:0739)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0739 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

9.9CVSS8.7AI score0.75594EPSS
Exploits7References14
redhat
redhat
added 2019/04/10 6:34 p.m.55 views

Important: Red Hat Security Advisory: Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins security update

An update for jenkins-2-plugins is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.9CVSS7.6AI score0.75594EPSS
Exploits7References7
circl
circl
added 2019/03/18 12:37 p.m.44 views

CVE-2019-1003029

creationtimestamp| type| source ---|---|--- 2019-03-18 12:37:31+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/jenkinsmetaprogramming.rb 2019-05-05 19:20:03+00:00| seen| MISP/5ccf3134-ea64-43c1-a356-f9f3950d210f 2022-07-31 07:01:12+00:00|...

9.9CVSS7.5AI score0.73854EPSS
Exploits3References8
redhatcve
redhatcve
added 2019/03/18 11:19 a.m.32 views

CVE-2019-1003029

A flaw was found in the Jenkins Script Security plugin version 1.53. An attacker with Overall/Read permissions is able to escape the sandbox and execute arbitrary code on the Jenkins master JVM. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

9.9CVSS4AI score0.73854EPSS
Exploits3References3
canvas
canvas
added 2019/03/08 9:29 p.m.115 views

Immunity Canvas: JENKINS_CHECKSCRIPT_RCE

Name| jenkinscheckscriptrce ---|--- CVE| CVE-2019-1003029 Exploit Pack| CANVAS Description| RCE on Jenkins checkScript Notes| CVE Name: CVE-2019-1003029 CVE-2019-1003005 CVE-2018-1000861 VENDOR: Jenkins NOTES: Groovy Plugin supports sandboxed Groovy expressions for its 'System Groovy'...

10CVSS0.5AI score0.98481EPSS
Exploits5
vulnrichment
vulnrichment
added 2019/03/08 9:0 p.m.13 views

CVE-2019-1003029

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with...

7.6AI score0.73854EPSS
Exploits3References4
cve
cve
added 2019/03/08 9:0 p.m.1064 views

CVE-2019-1003029

CVE-2019-1003029 describes a sandbox bypass in Jenkins Script Security Plugin (versions ≤ 1.53) that lets attackers with Overall/Read permission execute arbitrary code on the Jenkins master JVM. Affected components are in the plugin’s Groovy sandbox: GroovySandbox.java and SecureGroovyScript.java...

9.9CVSS9.6AI score0.73854EPSS
In wildExploits3References5Affected Software1
attackerkb
attackerkb
added 2019/03/08 12:0 a.m.33 views

CVE-2019-1003029

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with...

9.9CVSS5.4AI score0.73854EPSS
In wildExploits3References7
Rows per page
Query Builder