CVE-2017-1000094

Name of the Vulnerable Software and Affected Versions Docker Commons Plugin (affected versions not specified)

Description The Docker Commons Plugin has a functionality that provides a list of applicable credential IDs for users to select when configuring a job to authenticate with a Docker Registry. However, this functionality did not check permissions, allowing any user with Overall/Read permission to obtain a list of valid credential IDs. These IDs could potentially be used as part of an attack to capture credentials using another vulnerability.

Recommendations To resolve the issue, ensure that the permission to enumerate credentials IDs in the Docker Commons Plugin requires Extended Read permission (when enabled) or Configure permission to the job in whose context credentials are being accessed. If no job context exists, require Overall/Administer permission. At the moment, there is no information about a newer version that contains a fix for this vulnerability.