GHSA-wp5x-hrrw-6r4gMediumCVSS 5.0
Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory...
🔗 CVE IDs covered (1)
📋 Description
Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a generated SSH wrapper script, allowing attackers able to control the name of a build's working directory to execute arbitrary operating system commands on the agent.