Lucene search

GitHub Advisory DatabaseGHSA-5JC5-M87X-88FJ

HistoryJul 26, 2023 - 3:30 p.m.

Secret displayed without masking by Chef Identity Plugin

2023-07-2615:30:57

CWE-200

CWE-668

GitHub Advisory Database

github.com

chef identity plugin

unmasked key

global configuration

potential attackers

jenkins controller

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

19.5%

JSON

Chef Identity Plugin stores the user.pem key in its global configuration file io.chef.jenkins.ChefIdentityBuildWrapper.xml on the Jenkins controller as part of its configuration.

While this key is stored encrypted on disk, in Chef Identity Plugin 2.0.3 and earlier the global configuration form does not mask the user.pem key form field, increasing the potential for attackers to observe and capture it.

Affected configurations

Vulners

Node

novellidentity_manager_identity_applicationsRange≤2.0.3

CPENameOperatorVersion
org.jenkins-ci.plugins:chef-identityle2.0.3

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:chef-identity	le	2.0.3

References

www.openwall.com/lists/oss-security/2023/07/26/2

github.com/advisories/GHSA-5jc5-m87x-88fj

nvd.nist.gov/vuln/detail/CVE-2023-39155

www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3192

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

19.5%

JSON

Related for GHSA-5JC5-M87X-88FJ