Description
Jenkins Squash TM Publisher (Squash4Jenkins) Plugin 1.0.0 and earlier implements an agent-to-controller message that does not implement any validation of its input, allowing attackers able to control agent processes to replace arbitrary files on the Jenkins controller file system with an attacker-controlled JSON string.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.jenkins.io/security/advisory/2021-11-12/#SECURITY-2525
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/11/12/1
Scores
CVSS v3
8.1
EPSS
0.0013
EPSS Percentile
31.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Details
Status
published
Products (2)
jenkins/squash_tm_publisher
< 1.0.0
org.jenkins-ci.plugins/squashtm-publisher-plugin
0Maven
Published
Nov 12, 2021
Tracked Since
Feb 18, 2026