CVE-2022-30945

Summary

Jenkins Pipeline: Groovy Plugin 2689.v434009a_31b_f1 and earlier allows loading any Groovy source files on the classpath of Jenkins and Jenkins plugins in sandboxed pipelines.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Pipeline: Groovy Pluginunspecified <= 2689.v434009a_31b_f1affected
Jenkins projectJenkins Pipeline: Groovy Plugin2683.2687.vb_0cc3f973f06unaffected
Jenkins projectJenkins Pipeline: Groovy Plugin2.94.4unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References