GitHub Advisory DatabaseGHSA-66HV-FHCM-7XM7Jenkins Warnings Plugin exposures system-scoped credentials
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0005 Low
EPSS
Percentile
18.1%
Jenkins Warnings Plugin 10.5.0 and earlier does not set the appropriate context for credentials lookup, allowing the use of system-scoped credentials otherwise reserved for the global configuration.
This allows attackers with Item/Configure permission to access and capture credentials they are not entitled to.
Warnings Plugin 10.5.1 defines the appropriate context for credentials lookup. This fix has been backported to 10.4.1.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| io.jenkins.plugins:warnings-ng | lt | 10.4.1 | |
| io.jenkins.plugins:warnings-ng | eq | 10.5.0 |
References
www.openwall.com/lists/oss-security/2023/10/25/2
github.com/advisories/GHSA-66hv-fhcm-7xm7
github.com/jenkinsci/warnings-ng-plugin/commit/17d18d2fae58f5658a40d03a03f927819eb6cf1a
github.com/jenkinsci/warnings-ng-plugin/commit/372cd40ce73b25d8ae632b262f6ae1cd36ad9e4c
nvd.nist.gov/vuln/detail/CVE-2023-46651
www.jenkins.io/security/advisory/2023-10-25/#SECURITY-3265
Related
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
0.0005 Low
EPSS
Percentile
18.1%