Description
A path traversal vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java that allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary file write on the Jenkins master when scheduling a build.
Remediation
References
http://www.securityfocus.com/bid/106532
https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1074
Related Vulnerabilities
CVE-2023-42795 Vulnerability in maven package org.apache.tomcat:tomcat-catalina
CVE-2017-1000354 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2021-29943 Vulnerability in maven package org.apache.solr:solr-core
CVE-2020-24025 Vulnerability in maven package org.webjars.npm:node-sass