The combination filter Groovy script in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2015-10-16T20:00:00

Updated: 2024-08-06T04:54:16.280Z

Reserved: 2015-02-17T00:00:00

Link: CVE-2015-1806

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-10-16T20:59:04.527

Modified: 2024-11-21T02:26:11.113

Link: CVE-2015-1806

cve-icon Redhat

Severity : Moderate

Publid Date: 2015-02-27T00:00:00Z

Links: CVE-2015-1806 - Bugzilla