Security Advisory

CVE-2017-1000403

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-01-26 02:00:00

Last updated 2024-08-05 22:00:40

Assigner mitre

State PUBLISHED

Description

Jenkins Speaks! Plugin, all current versions, allows users with Job/Configure permission to run arbitrary Groovy code inside the Jenkins JVM, effectively elevating privileges to Overall/Run Scripts.

← Browse all CVEs View on cve.org ↗