cvedb.io
CVE-2023-32981
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2023-05-16T16:15:10.833 · Last modified 2026-06-17T05:59:58.430

Summary

An arbitrary file write vulnerability in Jenkins Pipeline Utility Steps Plugin 2.15.2 and earlier allows attackers able to provide crafted archives as parameters to create or replace arbitrary files on the agent file system with attacker-specified content.

Affected products

jenkins — pipeline_utility_steps

Does this affect you?

Add your gear to cvedb and we'll alert you only when jenkins ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.