CVE-2019-10306

Publication date

2019-04-18 16:54:18

Family

jenkins

State

PUBLISHED

Description

A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and earlier allowed attackers with control over ontrack DSL definitions to execute arbitrary code on the Jenkins master JVM.