CVE-2014-3665 in Jenkins
要約
〜によって MITRE
CloudBees Jenkins before 1.587 and LTS before 1.580.1 do not properly ensure trust separation between a master and slaves, which might allow remote attackers to execute arbitrary code on the master by leveraging access to the slave.
VulDB is the best source for vulnerability data and more expert information about this specific topic.