CVE-2019-10431

jenkins-script-security: Sandbox bypass vulnerability in Script Security Plugin

Severity Score

9.9

*CVSS v3.1

Exploit Likelihood

< 1%

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.64 and earlier related to the handling of default parameter expressions in constructors allowed attackers to execute arbitrary code in sandboxed scripts.

Una vulnerabilidad de omisión del sandbox en Jenkins Script Security Plugin versión 1.64 y anteriores, relacionada con el manejo de expresiones de parámetros predeterminados en constructores permitió a los atacantes ejecutar código arbitrario en scripts del sandbox.

A flaw was found in the Jenkins Script Security plugin. Sandbox protection could be circumvented through default parameter expressions in constructors. This allowed attackers, able to specify and run sandboxed scripts, to execute arbitrary code in the context of the Jenkins master JVM. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include bypass and cross site scripting vulnerabilities.

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2019-03-29 CVE Reserved
2019-10-01 CVE Published
2024-08-04 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation
CWE-94: Improper Control of Generation of Code ('Code Injection')

CAPEC

References (7)

URL	Tag	Source
http://www.openwall.com/lists/oss-securit...	Mailing List

1 - 1 of 1

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://access.redhat.com/errata/RHSA-2019:4055	2023-10-25
https://access.redhat.com/errata/RHSA-2019:4089	2023-10-25
https://access.redhat.com/errata/RHSA-2019:4097	2023-10-25
https://jenkins.io/security/advisory/2019-10-01/#SECURITY-...	2023-10-25
https://access.redhat.com/security/cve/CVE-2019-10431	2019-12-11
https://bugzilla.redhat.com/show_bug.cgi?id=1764390	2019-12-11

1 - 6 of 6

Affected Vendors, Products, and Versions (1)

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Jenkins Search vendor "Jenkins"		Script Security Search vendor "Jenkins" for product "Script Security"				<= 1.64 Search vendor "Jenkins" for product "Script Security" and version " <= 1.64"		jenkins		Affected

1 - 1 of 1