Lucene search
GoogleOSV:CVE-2019-1003005HistoryFeb 06, 2019 - 4:29 p.m.
CVE-2019-1003005
2019-02-0616:29:00
Google
osv.dev
7
A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.50 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.
Related
github
github
Sandbox Bypass in Script Security Plugin
2022-05-13 01:00:55
cvelist
cvelist
CVE-2019-1003005
2019-02-06 16:00:00
cve
cve
CVE-2019-1003005
2019-02-06 16:29:00
veracode
veracode
Sandbox Protection Bypass
2019-05-16 03:58:57
prion
prion
Security feature bypass
2019-02-06 16:29:00
osv
osv
Sandbox Bypass in Script Security Plugin
2022-05-13 01:00:55
nvd
nvd
CVE-2019-1003005
2019-02-06 16:29:00
redhatcve
redhatcve
CVE-2019-1003005
2020-04-09 10:33:39
canvas
canvas
Immunity Canvas: JENKINS_CHECKSCRIPT_RCE
2019-03-08 21:29:00
hackerone
hackerone
Django: Jenkins Unauthenticated RCE on https://djangoci.com/
2019-05-14 07:48:49
nessus
nessus
redhat
redhat
metasploit
metasploit
Jenkins ACL Bypass and Metaprogramming RCE
2019-03-16 05:32:36