Lucene search

GitHub Advisory DatabaseGHSA-W8GX-4R6W-3RX9

HistoryJul 28, 2022 - 12:00 a.m.

Jenkins rhnpush-plugin does not perform a permission check in a method implementing form validation

2022-07-2800:00:42

CWE-862

GitHub Advisory Database

github.com

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

22.2%

JSON

Jenkins rhnpush-plugin Plugin 0.5.1 and earlier does not perform a permission check in a method implementing form validation.

This allows attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns match workspace contents. A sequence of requests can be used to effectively list workspace contents.

rhnpush-plugin Plugin 0.5.2 requires Item/Workspace permission to validate patterns with workspace contents.

Affected configurations

Vulners

Node

wordpressplugin_newsletter_pluginRange≤0.5.1

CPENameOperatorVersion
org.jenkins-ci.plugins:rhnpush-pluginle0.5.1

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:rhnpush-plugin	le	0.5.1

References

www.openwall.com/lists/oss-security/2022/07/27/1

github.com/advisories/GHSA-w8gx-4r6w-3rx9

github.com/jenkinsci/rhnpush-plugin/commit/7827db39925d0fc8f5b95e013466987b513b3f3c

nvd.nist.gov/vuln/detail/CVE-2022-36892

www.jenkins.io/security/advisory/2022-07-27/#SECURITY-2402

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

22.2%

JSON

Related for GHSA-W8GX-4R6W-3RX9