pkg:Maven/org.jenkins-ci.plugins.workflow:workflow-cps

All known vulnerabilities

• CRITICAL9.9CVE-2019-1003030⚠ KEVSandbox bypass in Jenkins Pipeline: Groovy Plugin
  from 0, < 2.64
• CRITICAL9.9CVE-2022-43402Jenkins Pipeline: Groovy Plugin allows sandbox protection bypass and arbitrary code execution
  from 0, < 2803.v1a_f77ffcc773
• CRITICAL9.8Sandbox bypass vulnerability in Jenkins Pipeline: Groovy Plugin
  from 0, < 2.65
• HIGH8.8Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin
  from 0, < 2803.v1a_f77ffcc773
• HIGH8.8Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin
  from 0, < 2803.v1a_f77ffcc773
• HIGH8.8Improper Input Validation in Jenkins Pipeline: Groovy Plugin
  from 0, < 2.79
• HIGH8.8Jenkins Script Security and Pipeline Groovy Plugins Sandbox Bypass
  from 0, < 2.60
• HIGH8.8Arbitrary code execution due to incomplete sandbox protection in Jenkins Pipeline
  from 0, < 2.36.1
• HIGH8.8Improper Neutralization of Special Elements used in an OS Command in Jenkins Pipeline: Groovy Plugin
  >= 2646.v6ed3b5b01ff1, < 2656.vf7a
• HIGH8.0Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin
  from 0, < 3993.v3e20a
• HIGH7.5Sandbox bypass vulnerability through implicitly allowlisted platform Groovy files in Jenkins Pipeline: Groovy Plugin
  from 0, < 2692.v76b
• MEDIUM6.5Improper Link Resolution Before File Access in Jenkins Pipeline: Groovy Plugin
  >= 2.93, < 2.94.1
• MEDIUM4.3Jenkins Pipeline: Groovy Plugin has Insufficiently Protected Credentials
  from 0, < 2656.vf7a_e7b_75a_457