GHSA-ccxh-j7hg-m5mr
GitHub Security Advisory
Incorrect Authorization in Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin
✓ GitHub Reviewed
CRITICAL
Has CVE
Advisory Details
Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.
Affected Packages
Maven
io.fabric8.pipeline:kubernetes-pipeline-steps
Affected versions:
0
(last affected: 1.6)
Related CVEs
Key Information
9.0
/10
Dataset
Last updated: August 25, 2025 6:33 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.