CVE-2019-10355

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*

Configuration 2 (hide)

OR cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*

Information

Published : 2019-07-31 06:15

Updated : 2020-10-02 07:25


NVD link : CVE-2019-10355

Mitre link : CVE-2019-10355


JSON object : View

CWE
CWE-704

Incorrect Type Conversion or Cast

Advertisement

dedicated server usa

Products Affected

jenkins

  • script_security

redhat

  • openshift_container_platform