← volver
CVE-2015-1806

CVE-2015-1806

EPSS 2.5%
The combination filter Groovy script in Jenkins before 1.600 and LTS before 1.596.1 allows remote authenticated users with job configuration permission to gain privileges and execute arbitrary code on the master via unspecified vectors.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://rhn.redhat.com/errata/RHSA-2015-1844.htmlhttps://access.redhat.com/errata/RHSA-2016:0070https://bugzilla.redhat.com/show_bug.cgi?id=1205620https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-02-27