Lucene search

GoogleOSV:GHSA-HXXP-6546-WV6R

HistoryJul 02, 2021 - 6:36 p.m.

XXE vulnerability in Jenkins Selenium HTML report Plugin

2021-07-0218:36:13

Google

osv.dev

jenkins

html report

xxe vulnerability

xml parser

external entities

extraction of secrets

server-side request forgery

AI Score

4.5

Confidence

High

EPSS

0.001

Percentile

26.9%

JSON

Jenkins Selenium HTML report Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

This allows attackers with the ability to control the report files parsed using this plugin to have Jenkins parse a crafted report file that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery.

Jenkins Selenium HTML report Plugin 1.1 disables external entity resolution for its XML parser.

References

www.openwall.com/lists/oss-security/2021/06/30/1

www.openwall.com/lists/oss-security/2022/04/14/2

github.com/jenkinsci/seleniumhtmlreport-plugin

github.com/jenkinsci/seleniumhtmlreport-plugin/commit/5ca59b8c7d23af4450dc7f19c1b4107d59063ae1

nvd.nist.gov/vuln/detail/CVE-2021-21672

www.jenkins.io/security/advisory/2021-06-30/#SECURITY-2329