Lucene search

GitHub Advisory DatabaseGHSA-C7R5-CWW9-64Q6

HistorySep 06, 2023 - 3:30 p.m.

Path traversal in Jenkins Job Configuration History Plugin

2023-09-0615:30:26

CWE-22

GitHub Advisory Database

github.com

jenkins

configuration history

path traversal

security

software

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.1%

JSON

Jenkins Job Configuration History Plugin 1227.v7a_79fc4dc01f and earlier does not restrict the ‘name’ query parameter when rendering a history entry, allowing attackers to have Jenkins render a manipulated configuration history that was not created by the plugin.

Affected configurations

Vulners

Node

org.jenkins-ci.pluginsjobconfighistoryRange≤1227.v7a

VendorProductVersionCPE
org.jenkins-ci.pluginsjobconfighistory*cpe:2.3:a:org.jenkins-ci.plugins:jobconfighistory:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
org.jenkins-ci.plugins	jobconfighistory	*	cpe:2.3:a:org.jenkins-ci.plugins:jobconfighistory::::::::

References

www.openwall.com/lists/oss-security/2023/09/06/9

github.com/advisories/GHSA-c7r5-cww9-64q6

nvd.nist.gov/vuln/detail/CVE-2023-41930

www.jenkins.io/security/advisory/2023-09-06/#SECURITY-3233

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.1%

JSON

Related for GHSA-C7R5-CWW9-64Q6