Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM, if plugins using the Groovy sandbox are installed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CloudBees Script Security Plugin 安全漏洞
Vulnerability Description
CloudBees Script Security Plugin是美国CloudBees公司的Jenkins(基于Java开发的持续集成工具)中的一个用于检测脚本安全性的插件。 CloudBees Script Security Plugin 1.47及之前版本中的groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java文件存在安全漏洞。攻击者可利用该漏洞在Jenkins master JVM上执行任意代
CVSS Information
N/A
Vulnerability Type
N/A