CVE-2020-2134

Опубликовано: 09 мар. 2020

Источник: redhat

CVSS3: 8.8

Описание

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted constructor calls and crafted constructor bodies.

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2020-2134
https://nvd.nist.gov/vuln/detail/CVE-2020-2134
https://jenkins.io/security/advisory/2020-03-09/#SECURITY-1754

Дополнительная информация

Статус:

Important

Дефект:

CWE-863

https://bugzilla.redhat.com/show_bug.cgi?id=1819091jenkins-script-security-plugin: sandbox protection bypass via crafted constructor calls and crafted constructor bodies

8.8 High

CVSS3

Связанные уязвимости

CVE-2020-2134

CVSS3: 8.8

nvd

почти 6 лет назад

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted constructor calls and crafted constructor bodies.

GHSA-gj3q-p8cm-26rm

CVSS3: 8.8

github

больше 3 лет назад

Sandbox bypass vulnerability in Script Security Plugin

8.8 High

CVSS3