CVE-2019-1003005

high-risk

Published 2019-02-06

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.50 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to provide a Groovy script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.

Do I need to act?

74.2% chance of exploitation in next 30 days

EPSS score — higher than 26% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (1)

Script Security

Affected Vendors

Jenkins

References (6)

Third Party Advisory http://packetstormsecurity.com/files/166778/Jenkins-Remote-Code-Execution.html

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:0739

Vendor Advisory https://jenkins.io/security/advisory/2019-01-28/#SECURITY-1292

Third Party Advisory http://packetstormsecurity.com/files/166778/Jenkins-Remote-Code-Execution.html

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:0739

Vendor Advisory https://jenkins.io/security/advisory/2019-01-28/#SECURITY-1292

/ 100

high-risk

Severity 30/34 · Critical

Exploitability 19/34 · Moderate

Exposure 5/34 · Minimal