Security Advisory

CVE-2019-10390

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-28 15:30:17

Last updated 2024-08-04 22:17:20

Assigner jenkins

State PUBLISHED

Description

A sandbox bypass vulnerability in Jenkins Splunk Plugin 1.7.4 and earlier allowed attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.

← Browse all CVEs View on cve.org ↗