admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-52550.md

20 lines
948 B
Markdown
Raw Permalink Normal View History

Update CVE sources 2025-09-29 16:08
2025-09-29 16:08:36 +00:00
### [CVE-2024-52550](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52550)
![](https://img.shields.io/static/v1?label=Product&message=Jenkins%20Pipeline%3A%20Groovy%20Plugin&color=blue)
Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00
![](https://img.shields.io/static/v1?label=Version&message=0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=3990.vd281dd77a_388%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)
Update CVE sources 2025-09-29 16:08
2025-09-29 16:08:36 +00:00
### Description
Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a_388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main (Jenkinsfile) script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose (Jenkinsfile) script is no longer approved.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/Anton-ai111/CVE-2024-52550
- https://github.com/plzheheplztrying/cve_monitor
Reference in New Issue Copy Permalink