Lucene search
Ubuntu.comUB:CVE-2017-1000393HistoryJan 26, 2018 - 12:00 a.m.
CVE-2017-1000393
2018-01-2600:00:00
ubuntu.com
ubuntu.com
5
0.001 Low
EPSS
Percentile
45.0%
Jenkins 2.73.1 and earlier, 2.83 and earlier users with permission to
create or configure agents in Jenkins could configure a launch method
called ‘Launch agent via execution of command on master’. This allowed them
to run arbitrary shell commands on the master node whenever the agent was
supposed to be launched. Configuration of this launch method now requires
the Run Scripts permission typically only granted to administrators.
Related
osv
osv
OS Command Injection in Jenkins
2022-05-14 01:04:30
CVE-2017-1000393
2018-01-26 02:29:00
prion
prion
Command injection
2018-01-26 02:29:00
cve
cve
CVE-2017-1000393
2018-01-26 02:29:00
redhatcve
redhatcve
CVE-2017-1000393
2017-11-21 11:19:56
cvelist
cvelist
CVE-2017-1000393
2018-01-26 02:00:00
github
github
OS Command Injection in Jenkins
2022-05-14 01:04:30
nessus
nessus
Jenkins < 2.84 / < 2.73.2 (LTS) Multiple Vulnerabilities
2019-06-05 00:00:00
openvas
openvas
Jenkins Multiple Vulnerabilities (Oct 2017) - Linux
2017-11-07 00:00:00
Jenkins Multiple Vulnerabilities (Oct 2017) - Windows
2017-11-07 00:00:00