A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.67 and earlier related to the handling of default parameter expressions in closures allowed attackers to execute arbitrary code in sandboxed scripts.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jenkins

Published: 2019-11-21T14:11:20

Updated: 2024-08-05T01:17:40.259Z

Reserved: 2019-09-20T00:00:00

Link: CVE-2019-16538

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-21T15:15:13.947

Modified: 2023-10-25T18:16:25.950

Link: CVE-2019-16538

cve-icon Redhat

Severity : Important

Publid Date: 2019-11-21T00:00:00Z

Links: CVE-2019-16538 - Bugzilla