PT-2018-9587 · Jenkins · Script Security Plugin+1

Man Yue Mo

Published

2018-12-10

Updated

2022-05-13

CVE-2018-1000865

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Script Security Plugin versions 1.47 and earlier

Description: A sandbox bypass issue exists that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM, if plugins using the Groovy sandbox are installed. This is related to the SandboxTransformer.java file in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/.

Recommendations: For Script Security Plugin versions 1.47 and earlier, consider updating to a version that contains a fix for this issue, as no specific workaround is provided for these versions. As a temporary mitigation measure, restrict access to plugins that utilize the Groovy sandbox to minimize the risk of exploitation.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2018-1000865

GHSA-P4P5-3V2J-W5RV

Affected Products

Jenkins

Script Security Plugin

PT-2018-9587 · Jenkins · Script Security Plugin+1

CVE-2018-1000865

Weakness Enumeration

Related Identifiers

Affected Products

References · 7