Page 4 of 31 results (0.002 seconds)
CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 0CVE-2016-3102
https://notcve.org/view.php?id=CVE-2016-3102
09 Feb 2017 — The Script Security plugin before 1.18.1 in Jenkins might allow remote attackers to bypass a Groovy sandbox protection mechanism via a plugin that performs (1) direct field access or (2) get/set array operations. El plugin Script Security en versiones anteriores a 1.18.1 en Jenkins podría permitir a atacantes remotos eludir el mecanismo de protección sandbox de Groovy a través del plugin que realiza (1) acceso directo al campo o (2) operaciones de array get/set. • https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-04-11 • CWE-254: 7PK - Security Features •