Lucene search
GoogleOSV:GHSA-H7RX-R733-7X7RHistoryMay 13, 2022 - 1:40 a.m.
Sandbox bypass in Jenkins Script Security Plugin sandbox bypass
2022-05-1301:40:57
Google
osv.dev
6
jenkins
script security
sandbox bypass
constructor invocations
method references
type coercion
software
Script Security Plugin did not apply sandboxing restrictions to constructor invocations via positional arguments list, super constructor invocations, method references, and type coercion expressions. This could be used to invoke arbitrary constructors and methods, bypassing sandbox protection.
Related
redhatcve
redhatcve
CVE-2017-1000107
2017-08-16 12:48:31
cve
cve
CVE-2017-1000107
2017-10-05 01:29:04
github
github
Sandbox bypass in Jenkins Script Security Plugin sandbox bypass
2022-05-13 01:40:57
nvd
nvd
CVE-2017-1000107
2017-10-05 01:29:04
prion
prion
Type confusion
2017-10-05 01:29:00
osv
osv
CVE-2017-1000107
2017-10-05 01:29:04
cvelist
cvelist
CVE-2017-1000107
2017-10-04 01:00:00