Lucene search

GitHub Advisory DatabaseGHSA-8GC7-WHPH-RX5Q

HistoryJul 12, 2023 - 6:30 p.m.

Jenkins Test Results Aggregator Plugin vulnerable to Cross Site Request Forgery

2023-07-1218:30:38

CWE-352

GitHub Advisory Database

github.com

jenkins

test results aggregator

plugin

cross site request forgery

http endpoint

validation

permission check

overall

read permission

csrf vulnerability

software

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

0.0005 Low

EPSS

Percentile

17.2%

JSON

Jenkins Test Results Aggregator Plugin 1.2.13 and earlier does not perform a permission check in an HTTP endpoint implementing form validation.

This allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified username and password.

Additionally, this HTTP endpoint does not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability.

Affected configurations

Vulners

Node

jenkinstest_results_aggregatorRange≤1.2.13jenkins

CPENameOperatorVersion
org.jenkins-ci.plugins:test-results-aggregatorle1.2.13

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:test-results-aggregator	le	1.2.13

References

www.openwall.com/lists/oss-security/2023/07/12/2

github.com/advisories/GHSA-8gc7-whph-rx5q

github.com/jenkinsci/test-results-aggregator-plugin/commit/7dc29066d70af52cb3aa143783e8d2cb863fa4f7

nvd.nist.gov/vuln/detail/CVE-2023-37955

www.jenkins.io/security/advisory/2023-07-12/#SECURITY-3122

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

0.0005 Low

EPSS

Percentile

17.2%

JSON

Related for GHSA-8GC7-WHPH-RX5Q