Jenkins Script_security

4 CVEs affecting Jenkins Script_security. Latest disclosed: 2026-04-29. Critical: 0, High: 2.

Top CVEs affecting Jenkins Script_security
CVESeverityScorePublishedSummary
CVE-2017-1000107High8.82017-10-05Script Security Plugin did not apply sandboxing restrictions to constructor invocations via positional arguments list, super constructor invocations, method re…
CVE-2016-3102High7.32017-02-09The Script Security plugin before 1.18.1 in Jenkins might allow remote attackers to bypass a Groovy sandbox protection mechanism via a plugin that performs (1)…
CVE-2017-1000095Medium6.52017-10-05The default whitelist included the following unsafe entries: DefaultGroovyMethods.putAt(Object, String, Object); DefaultGroovyMethods.getAt(Object, String). Th…
CVE-2026-42519Medium4.32026-04-29A missing permission check in Jenkins Script Security Plugin 1399.ve6a_66547f6e1 and earlier allows attackers with Overall/Read permission to enumerate pending…