Описание
Sandbox protection in Jenkins Script Security Plugin 1.69 and earlier could be circumvented during the script compilation phase by applying AST transforming annotations to imports or by using them inside of other annotations.
Дополнительная информация
Статус:
Important
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1819093jenkins-script-security-plugin: sandbox protection bypass during script compilation phase by applying AST transforming annotations
EPSS
Процентиль: 79%
0.01291
Низкий
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
почти 6 лет назад
Sandbox protection in Jenkins Script Security Plugin 1.69 and earlier could be circumvented during the script compilation phase by applying AST transforming annotations to imports or by using them inside of other annotations.
CVSS3: 8.8
github
больше 3 лет назад
Improper Input Validation in Jenkins Script Security Plugin
EPSS
Процентиль: 79%
0.01291
Низкий
8.8 High
CVSS3