Jenkins - Puppet Enterprise Pipeline CVE

Filtered by vendor Jenkins Subscribe

Filtered by product Puppet Enterprise Pipeline

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-10458	1 Jenkins	1 Puppet Enterprise Pipeline	2023-12-10	6.5 MEDIUM	9.9 CRITICAL
Jenkins Puppet Enterprise Pipeline 1.3.1 and earlier specifies unsafe values in its custom Script Security whitelist, allowing attackers able to execute Script Security protected scripts to execute arbitrary code.

Vulnerabilities (CVE)