Vulnerabilities (CVE)

Filtered by vendor Jenkins Subscribe
Filtered by product Pipeline Classpath Step
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-2650 1 Jenkins 1 Pipeline Classpath Step 2024-11-21 6.0 MEDIUM 8.5 HIGH
It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permission in Jenkins.