admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2019/CVE-2019-10400.md

18 lines
779 B
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2019-10400](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10400)
![](https://img.shields.io/static/v1?label=Product&message=Jenkins%20Script%20Security%20Plugin&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%201.62%20and%20earlier%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of subexpressions in increment and decrement expressions not involving actual assignment allowed attackers to execute arbitrary code in sandboxed scripts.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/alphaSeclab/sec-daily-2019
Reference in New Issue Copy Permalink