CVE-2019-1003029 — Sandbox bypass in Script Security Plugin

Description

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.

How to fix CVE-2019-1003029

To remediate CVE-2019-1003029, upgrade the affected package to a fixed version below.

—upgrade to 1.54 or later

Is CVE-2019-1003029 being exploited?

Yes — CVE-2019-1003029 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (1)

from 0, < 1.54

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:H

References (7)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2019-1003029
PATCHgithub.com/jenkinsci/script-security-plugin
WEBpacketstormsecurity.com/files/166778/Jenkins-Remote-Code-Execution.html
WEBaccess.redhat.com/errata/RHSA-2019:0739