Vulnerabilities > CVE-2020-2134 - Incorrect Authorization vulnerability in Jenkins Script Security

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
jenkins
CWE-863

Summary

Sandbox protection in Jenkins Script Security Plugin 1.70 and earlier could be circumvented through crafted constructor calls and crafted constructor bodies.

Vulnerable Configurations

Part Description Count
Application
Jenkins
99

Common Weakness Enumeration (CWE)