This security bulletin contains one medium risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a remote attacker to execute arbitrary code on the system.
The vulnerability exists due to a sandbox bypass issue. A remote user can bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.Mitigation
Install updates from vendor's website.Vulnerable software versions
Script Security: 1228.vd93135a_2fb_25
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?