CVE-2022-43404: A sandbox bypass vulnerability involving crafted constructor bodies and calls to sandbox-generated synthetic constructors in Jenkins Script Security Plugin…

critical9.9CVSS 3.1

AVNACLPRLUINSCCHIHAH

A sandbox bypass vulnerability involving crafted constructor bodies and calls to sandbox-generated synthetic constructors in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.

Affected

34 ranges· showing 25

Vendor	Product	Version range	Fixed in
jenkins	bmc_ami_devx_code_debug_code_coverage_plugin	—	—
jenkins	bmc_ami_devx_total_test_plugin	—	—
jenkins	bmc_ami_strobe_measurement_task_plugin	—	—
jenkins	code_pipeline_plugin	—	—
jenkins	compuware_topaz_utilities_plugin	—	—
jenkins	contrast_continuous_application_security_plugin	—	—
jenkins	credentials_plugin	—	—
jenkins	custom_checkbox_parameter_plugin	—	—
jenkins	cve-2022-43401_in_script_security_plugin	—	—
jenkins	declarative_plugin	—	—
jenkins	deprecated_groovy_libraries_plugin	—	—
jenkins	fireline_plugin	—	—
jenkins	generic_webhook_trigger_plugin	—	—
jenkins	gitlab_plugin	—	—
jenkins	groovy_libraries_plugin	—	—
jenkins	groovy_plugin	—	—
jenkins	input_step_plugin	—	—
jenkins	job_import_plugin	—	—
jenkins	job_plugin	—	—
jenkins	katalon_plugin	—	—
jenkins	mercurial_plugin	—	—
jenkins	nunit_plugin	—	—
jenkins	repo_plugin	—	—
jenkins	s3_explorer_plugin	—	—
jenkins	screenrecorder_plugin	—	—

CVSS provenance

nvdv3.19.9CRITICALCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

ghsa9.9CRITICAL

osv9.9CRITICAL