Jenkins Owasp Zap Plugin
1 CVEs
product
Monthly
Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers with Item/Configure permission to execute arbitrary code on the Jenkins controller.
Jenkins
RCE
Jenkins Owasp Zap Plugin
NVD
VulDB
CVSS 3.1
8.8
EPSS
0.4%
EPSS 0%
CVSS 8.8
HIGH
This Week
Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers with Item/Configure permission to execute arbitrary code on the Jenkins controller.
Jenkins
RCE
Jenkins Owasp Zap Plugin
NVD
VulDB