Jenkins GitHub Authentication Plugin Cross-Site Request Forgery vulnerability

2022-05-2416:44:55

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.1%

JSON

Jenkins GitHub Authentication Plugin did not manage the state parameter of OAuth to prevent CSRF. This allowed an attacker to catch the redirect URL provided during the authentication process using OAuth and send it to the victim. If the victim was already connected to Jenkins, their Jenkins account would be attached to the attacker’s GitHub account.

The state parameter is now correctly managed.

CPENameOperatorVersion
org.jenkins-ci.plugins:github-oautheq0.7
org.jenkins-ci.plugins:github-oautheq0.22.2
org.jenkins-ci.plugins:github-oautheq0.8
org.jenkins-ci.plugins:github-oautheq0.9
org.jenkins-ci.plugins:github-oautheq0.17
org.jenkins-ci.plugins:github-oautheq0.4
org.jenkins-ci.plugins:github-oautheq0.3
org.jenkins-ci.plugins:github-oautheq0.12
org.jenkins-ci.plugins:github-oautheq0.8.1
org.jenkins-ci.plugins:github-oautheq0.22

Name	Operator	Version
org.jenkins-ci.plugins:github-oauth	eq	0.7
org.jenkins-ci.plugins:github-oauth	eq	0.22.2
org.jenkins-ci.plugins:github-oauth	eq	0.8
org.jenkins-ci.plugins:github-oauth	eq	0.9
org.jenkins-ci.plugins:github-oauth	eq	0.17
org.jenkins-ci.plugins:github-oauth	eq	0.4
org.jenkins-ci.plugins:github-oauth	eq	0.3
org.jenkins-ci.plugins:github-oauth	eq	0.12
org.jenkins-ci.plugins:github-oauth	eq	0.8.1
org.jenkins-ci.plugins:github-oauth	eq	0.22