Lucene search

Script Security Security Vulnerabilities - March 2020

cve

CVE-2020-2134

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted constructor calls and crafted constructor bodies.

8.8CVSS

8.4AI Score

0.001EPSS

2020-03-09 04:15 PM

102

cve

CVE-2020-2135

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted method calls on objects that implement GroovyInterceptable.

8.8CVSS

8.5AI Score

0.001EPSS

2020-03-09 04:15 PM

100