Vulnerabilities > Jenkins > Speaks

DATE CVE VULNERABILITY TITLE RISK
2018-01-26 CVE-2017-1000403 Incorrect Permission Assignment for Critical Resource vulnerability in Jenkins Speaks! 0.1/0.1.1
Jenkins Speaks! Plugin, all current versions, allows users with Job/Configure permission to run arbitrary Groovy code inside the Jenkins JVM, effectively elevating privileges to Overall/Run Scripts.
network
low complexity
jenkins CWE-732
6.5