Jenkins

Script Security

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.05%
  • Veröffentlicht 12.09.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:19:03

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of property names in property expressions in increment and decrement expressions allowed attackers to execute arbitrary code in sandboxed script...

  • EPSS 1.05%
  • Veröffentlicht 12.09.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:19:02

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of property names in property expressions on the left-hand side of assignment expressions allowed attackers to execute arbitrary code in sandbox...

  • EPSS 1.05%
  • Veröffentlicht 12.09.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:19:02

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of method names in method call expressions allowed attackers to execute arbitrary code in sandboxed scripts.

  • EPSS 2.5%
  • Veröffentlicht 31.07.2019 13:15:12
  • Zuletzt bearbeitet 21.11.2024 04:18:57

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions allowed attackers to execute arbitrary code in sandboxed scripts.

  • EPSS 2.5%
  • Veröffentlicht 31.07.2019 13:15:12
  • Zuletzt bearbeitet 21.11.2024 04:18:57

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts.

  • EPSS 3.37%
  • Veröffentlicht 28.03.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:17:47

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.55 and earlier allows attackers to invoke arbitrary constructors in sandboxed scripts.

Warnung
  • EPSS 73.85%
  • Veröffentlicht 08.03.2019 21:29:00
  • Zuletzt bearbeitet 24.10.2025 14:49:04

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/Secure...

  • EPSS 2.99%
  • Veröffentlicht 20.02.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:17:45

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.52 and earlier in RejectASTTransformsCustomizer.java that allows attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitr...

  • EPSS 19.04%
  • Veröffentlicht 06.02.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:17:43

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.50 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to provide a Groo...

Exploit
  • EPSS 98.43%
  • Veröffentlicht 22.01.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:17:42

A sandbox bypass vulnerability exists in Script Security Plugin 1.49 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java that allows attackers with the ability to provide sandboxed scripts to execute ar...