Lucene search

GoogleOSV:GHSA-Q2FC-9WW2-GGFJ

HistoryApr 12, 2023 - 6:30 p.m.

Jenkins Quay.io trigger Plugin webhook endpoint can be accessed without authentication

2023-04-1218:30:37

Google

osv.dev

jenkins

quay.io

trigger plugin

authentication

webhook

endpoint

build jobs

repository

unauthenticated access

security vulnerability

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

Jenkins Quay.io trigger Plugin provides a webhook endpoint at /quayio-webhook/ that can be used to trigger builds of jobs configured to use a specified repository.

In Quay.io trigger Plugin 0.1 and earlier, this endpoint can be accessed without authentication.

This allows unauthenticated attackers to trigger builds of jobs corresponding to the attacker-specified repository.

CPENameOperatorVersion
org.jenkins-ci.plugins:quayio-triggereq0.1

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:quayio-trigger	eq	0.1

References

www.openwall.com/lists/oss-security/2023/04/13/3

nvd.nist.gov/vuln/detail/CVE-2023-30519

www.jenkins.io/security/advisory/2023-04-12/#SECURITY-2849

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

45.9%

JSON

Related for OSV:GHSA-Q2FC-9WW2-GGFJ