Your RSA-2048 keys break in 2030. Find every one of them before attackers do.
CISA KEV·Added 2022-04-25 — agencies required to remediate by 2022-05-16
Maven

GHSA-xvxq-hq48-xphm

CRITICAL

Sandbox bypass in Script Security Plugin

Also known asCVE-2019-1003029
Published
May 13, 2022
Updated
Oct 22, 2025
Affected
1 pkg
Patched
1 / 1
Exploits
4 known

EPSS Exploitation Probability

via FIRST.org ↗
92.6%probability of exploitation in next 30 days
Very High Risk100th percentile0.00%
91.6%92.1%92.6%93.1%92.1%92.6%Dec 25Apr 26Jun 26

EPSS (Exploit Prediction Scoring System) is a daily probability model maintained by FIRST.org. It estimates the likelihood a CVE will be exploited in production environments within the next 30 days, derived from real-world threat intelligence signals.

Blast Radius

1 pkg affected
org.jenkins-ci.plugins:script-security

Real-time download stats are indexed for npm and PyPI packages. This vulnerability affects Maven packages — download data is not available via public APIs for these ecosystems.

Description

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.

Affected Packages

1 total 1 fixed
EcosystemPackageVulnerable rangeFix
Mavenorg.jenkins-ci.plugins:script-securityall versions1.54
Exploits & PoCs
4

Research use only. For defensive security, authorized penetration testing, and academic research only. Never execute exploit code against systems without explicit written authorization.

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin …

github.comMetasploitFeb 2021

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin …

github.comAPIMay 2019

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin …

cisa.govAPIApr 2022

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin …

cisa.govCISAApr 2022

Frequently Asked Questions

A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
O3 Security · Impact-Aware SCA

Is GHSA-xvxq-hq48-xphm in your stack?

O3 detects GHSA-xvxq-hq48-xphm across Maven dependencies and uses function-level reachability to confirm whether the vulnerable code path is actually reachable — not just present. No false positives.

Scan my stack How O3 SCA works