Lucene search
+L

5 matches found

vulnersOsv
vulnersOsv
added 2022/05/13 1:15 a.m.3 views

org.jenkins-ci.plugins:seed (>=0.8.0 <=2.1.4) potentially affected by CVE-2019-1003034 via org.jenkins-ci.plugins:job-dsl (>=1.34 <=1.50)

org.jenkins-ci.plugins:job-dsl MAVEN version =1.34, =0.8.0, =2.1.4 Source cves: CVE-2019-1003034 Source advisory: OSV:GHSA-5R74-PGMQ-92MM...

9.9CVSS7.2AI score0.02962EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/04/11 12:0 a.m.36 views

RHEL 7 : Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins (RHSA-2019:0739)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0739 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

9.9CVSS8.7AI score0.75594EPSS
Exploits7References14
RedHat Linux
RedHat Linux
added 2019/04/10 6:34 p.m.55 views

Important: Red Hat Security Advisory: Red Hat OpenShift Container Platform 3.11 jenkins-2-plugins security update

An update for jenkins-2-plugins is now available for Red Hat OpenShift Container Platform 3.11. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.9CVSS7.6AI score0.75594EPSS
Exploits7References7
OSV
OSV
added 2019/03/08 9:29 p.m.27 views

CVE-2019-1003034

A sandbox bypass vulnerability exists in Jenkins Job DSL Plugin 1.71 and earlier in job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/AbstractDslScriptLoader.groovy, job-dsl-plugin/build.gradle, job-dsl-plugin/src/main/groovy/javaposse/jobdsl/plugin/JobDslWhitelist.groovy,...

9.9CVSS7.6AI score
Exploits0References3
CVE
CVE
added 2019/03/08 9:0 p.m.102 views

CVE-2019-1003034

CVE-2019-1003034 is a sandbox bypass in the Jenkins Job DSL Plugin (affected in 1.71 and earlier) that can let attackers with control over Job DSL definitions execute arbitrary code on the Jenkins master JVM. The connected advisories (GHSA-5R74-PGMQ-92MM and Red Hat RHSA-2019:0739) confirm a sand...

9.9CVSS9.7AI score0.02962EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder