CVE-2024-34144

A sandbox bypass vulnerability involving crafted constructor bodies in Jenkins Script Security Plugin 1335.vf07d9ce377a_e and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://www.openwall.com/lists/oss-security/2024/05/02/3	Mailing List
https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341	Vendor Advisory
http://www.openwall.com/lists/oss-security/2024/05/02/3	Mailing List
https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*

History

10 Oct 2025, 15:34

Type	Values Removed	Values Added
References	~~() http://www.openwall.com/lists/oss-security/2024/05/02/3 -~~	() http://www.openwall.com/lists/oss-security/2024/05/02/3 - Mailing List
References	~~() https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341 -~~	() https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341 - Vendor Advisory
First Time		Jenkins Jenkins script Security
CPE		cpe:2.3:a:jenkins:script_security::::::jenkins::*

Information

Published : 2024-05-02 14:15

Updated : 2025-10-10 15:34

NVD link : CVE-2024-34144

Mitre link : CVE-2024-34144

CVE.ORG link : CVE-2024-34144

JSON object : View

Products Affected

jenkins

script_security

CWE

CWE-693

Protection Mechanism Failure

{"id": "CVE-2024-34144", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-05-02T14:15:10.280", "references": [{"url": "http://www.openwall.com/lists/oss-security/2024/05/02/3", "tags": ["Mailing List"], "source": "jenkinsci-cert@googlegroups.com"}, {"url": "https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341", "tags": ["Vendor Advisory"], "source": "jenkinsci-cert@googlegroups.com"}, {"url": "http://www.openwall.com/lists/oss-security/2024/05/02/3", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-693"}]}], "descriptions": [{"lang": "en", "value": "A sandbox bypass vulnerability involving crafted constructor bodies in Jenkins Script Security Plugin 1335.vf07d9ce377a_e and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM."}, {"lang": "es", "value": "Una vulnerabilidad de omisi\u00f3n de la sandbox que involucra cuerpos de constructores manipulados en Jenkins Script Security Plugin 1335.vf07d9ce377a_e y versiones anteriores permite a atacantes con permiso para definir y ejecutar scripts de la sandbox, incluidos Pipelines, eludir la protecci\u00f3n de la sandbox y ejecutar c\u00f3digo arbitrario en el contexto de la JVM del controlador Jenkins."}], "lastModified": "2025-10-10T15:34:15.143", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*", "vulnerable": true, "matchCriteriaId": "9DD63447-95AF-4C16-9958-D8742715415F", "versionEndIncluding": "1335.vf07d9ce377a_e"}], "operator": "OR"}]}], "sourceIdentifier": "jenkinsci-cert@googlegroups.com"}