Lucene search

GoogleOSV:BIT-JENKINS-2023-43497

HistoryMar 06, 2024 - 10:54 a.m.

BIT-jenkins-2023-43497

2024-03-0610:54:26

Google

osv.dev

jenkins

security

file uploads

stapler

lts

vulnerability

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

19.4%

JSON

In Jenkins 2.423 and earlier, LTS 2.414.1 and earlier, processing file uploads using the Stapler web framework creates temporary files in the default system temporary directory with the default permissions for newly created files, potentially allowing attackers with access to the Jenkins controller file system to read and write the files before they are used.

CPENameOperatorVersion
jenkinslt2.414.2
jenkinslt2.424.0

CPE	Name	Operator	Version
	jenkins	lt	2.414.2
	jenkins	lt	2.424.0

References

www.openwall.com/lists/oss-security/2023/09/20/5

www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3073

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

19.4%

JSON

Related for OSV:BIT-JENKINS-2023-43497