A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.64 and earlier related to the handling of default parameter expressions in constructors allowed attackers to execute arbitrary code in sandboxed scripts.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2019-10-01T13:45:19

Updated: 2024-08-04T22:24:18.372Z

Reserved: 2019-03-29T00:00:00

Link: CVE-2019-10431

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-10-01T14:15:18.507

Modified: 2023-10-25T18:16:22.970

Link: CVE-2019-10431

cve-icon Redhat

Severity : Important

Publid Date: 2019-10-01T00:00:00Z

Links: CVE-2019-10431 - Bugzilla