CVE-2019-1003041

Published: Mar 28, 2019
Updated: Oct 26, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2019-1003041" target="_blank" rel="noopener"> CVE-2019-1003041
GHSA: <a href="https://github.com/advisories/GHSA-x74x-qf5j-35jh" target="_blank" rel="noopener"> GHSA-x74x-qf5j-35jh
Severity: Critical
Exploit:

A sandbox bypass vulnerability in Jenkins Pipeline: Groovy Plugin 2.64 and earlier allows attackers to invoke arbitrary constructors in sandboxed scripts.

CVSS v3:

CVSS v2:

CWEs: