Lucene search

GitHub Advisory DatabaseGHSA-96C7-FQXV-RMV7

HistoryApr 12, 2023 - 6:30 p.m.

Jenkins Consul KV Builder Plugin stores HashiCorp Consul ACL Token unencrypted

2023-04-1218:30:36

CWE-312

GitHub Advisory Database

github.com

jenkins consul kv builder plugin

hashicorp consul

acl token

unencrypted

global configuration

file system

attackers

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

40.4%

JSON

Jenkins Consul KV Builder Plugin 2.0.13 and earlier stores the HashiCorp Consul ACL Token unencrypted in its global configuration file org.jenkinsci.plugins.consulkv.GlobalConsulConfig.xml on the Jenkins controller as part of its configuration.

This token can be viewed by users with access to the Jenkins controller file system.

Additionally, the global configuration form does not mask the token, increasing the potential for attackers to observe and capture it.

Affected configurations

Vulners

Node

jenkinsconsul_kv_builderRange≤2.0.13jenkins

CPENameOperatorVersion
org.jenkins-ci.plugins:consul-kv-builderle2.0.13

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:consul-kv-builder	le	2.0.13

References

www.openwall.com/lists/oss-security/2023/04/13/3

github.com/advisories/GHSA-96c7-fqxv-rmv7

nvd.nist.gov/vuln/detail/CVE-2023-30530

www.jenkins.io/security/advisory/2023-04-12/#SECURITY-2944

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

40.4%

JSON

Related for GHSA-96C7-FQXV-RMV7