GHSA-r5c7-qcc9-5v7m, CVE-2017-2650
maven/cprice404/pipeline-classpath
Jenkins Pipeline Classpath Step plugin allowed Script Security sandbox bypass
It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permission in Jenkins.
Version 0.1.0
Unfortunately, there is no solution available yet.
2024-01-31
source |