Lucene search

GitHub Advisory DatabaseGHSA-4G29-R7VJ-2RPV

HistoryOct 19, 2022 - 7:00 p.m.

Jenkins Job Import Plugin allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins

2022-10-1919:00:22

CWE-862

GitHub Advisory Database

github.com

jenkins

job import plugin

credential enumeration

http endpoint

permission check

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

22.0%

JSON

Jenkins Job Import Plugin 3.5 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. An enumeration of credentials IDs in Job Import Plugin 3.6 requires Job Import/Import Jobs permission.

Affected configurations

Vulners

Node

org.jenkins-ci.plugins\Matchjob-dsl

CPENameOperatorVersion
org.jenkins-ci.plugins:job-import-pluginle3.5

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:job-import-plugin	le	3.5

References

www.openwall.com/lists/oss-security/2022/10/19/3

github.com/advisories/GHSA-4g29-r7vj-2rpv

github.com/jenkinsci/job-import-plugin/commit/1b4119849571d4879977c529f9972d271ad6a630

nvd.nist.gov/vuln/detail/CVE-2022-43413

www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2791

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

22.0%

JSON

Related for GHSA-4G29-R7VJ-2RPV