CVE-2019-1003031

Summary

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Matrix Project Plugin1.13 and earlieraffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References