Jenkins Warnings Plugin exposures system-scoped credentials

2023-10-2518:32:25

Google

osv.dev

jenkins

warnings plugin

system-scoped credentials

unauthorized access

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

6.9 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.2%

JSON

Jenkins Warnings Plugin 10.5.0 and earlier does not set the appropriate context for credentials lookup, allowing the use of system-scoped credentials otherwise reserved for the global configuration.

This allows attackers with Item/Configure permission to access and capture credentials they are not entitled to.

Warnings Plugin 10.5.1 defines the appropriate context for credentials lookup. This fix has been backported to 10.4.1.

CPENameOperatorVersion
io.jenkins.plugins:warnings-ngeq8.9.1
io.jenkins.plugins:warnings-ngeq8.0.0-beta1
io.jenkins.plugins:warnings-ngeq9.0.1
io.jenkins.plugins:warnings-ngeq8.0.0-beta8
io.jenkins.plugins:warnings-ngeq7.0.0
io.jenkins.plugins:warnings-ngeq6.0.3
io.jenkins.plugins:warnings-ngeq9.23.1
io.jenkins.plugins:warnings-ngeq8.6.0
io.jenkins.plugins:warnings-ngeq8.5.0
io.jenkins.plugins:warnings-ngeq1.0.0-beta5

Name	Operator	Version
io.jenkins.plugins:warnings-ng	eq	8.9.1
io.jenkins.plugins:warnings-ng	eq	8.0.0-beta1
io.jenkins.plugins:warnings-ng	eq	9.0.1
io.jenkins.plugins:warnings-ng	eq	8.0.0-beta8
io.jenkins.plugins:warnings-ng	eq	7.0.0
io.jenkins.plugins:warnings-ng	eq	6.0.3
io.jenkins.plugins:warnings-ng	eq	9.23.1
io.jenkins.plugins:warnings-ng	eq	8.6.0
io.jenkins.plugins:warnings-ng	eq	8.5.0
io.jenkins.plugins:warnings-ng	eq	1.0.0-beta5