Vulnetix
Try Vulnetix Request Demo
CVE-2020-2109 PUBLISHED CVSS 8.800000190734863 HIGH

Sandbox protection in Jenkins Pipeline: Groovy Plugin 2.78 and earlier can be circumvented through default parameter expressions in CPS-transformed methods.

EPSS 0.47% · 64.6th percentile

Risk Scores

CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.47%
64.6th percentile

Affected Products

VendorProductVersions
Jenkins projectJenkins Pipeline: Groovy Pluginunspecified
Mavenorg.jenkins-ci.plugins.workflow:workflow-cps0
jenkinspipeline\_groovy

Timeline

References

Open in Interactive Console →