Lucene search

GitHub Advisory DatabaseGHSA-W4G6-8XQP-G92M

HistoryApr 02, 2023 - 9:30 p.m.

Jenkins Phabricator Differential Plugin vulnerable to XML external entity (XXE) attacks

2023-04-0221:30:16

CWE-611

GitHub Advisory Database

github.com

jenkins

phabricator

differential

plugin

xxe

attacks

xml

security

vulnerability

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS

0.001

Percentile

51.1%

JSON

Jenkins Phabricator Differential Plugin 2.1.5 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

This allows attackers able to control coverage report file contents for the Post to Phabricator post-build action to have Jenkins parse a crafted XML document that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery.

Affected configurations

Vulners

Node

org.jenkins-ci.plugins\Matchphabricator-plugin

References

github.com/advisories/GHSA-w4g6-8xqp-g92m

nvd.nist.gov/vuln/detail/CVE-2023-28683

www.jenkins.io/security/advisory/2023-03-21/#SECURITY-2942

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS

0.001

Percentile

51.1%

JSON

Related for GHSA-W4G6-8XQP-G92M