CVE-2023-37945

Name of the Vulnerable Software and Affected Versions Jenkins SAML Single Sign On(SSO) Plugin versions 2.1.0 through 2.3.0

Description A missing permission check in the Jenkins SAML Single Sign On(SSO) Plugin allows attackers with Overall/Read permission to download a string representation of the current security realm, potentially including sensitive information. This issue affects versions 2.1.0 through 2.3.0 of the plugin.

Recommendations For Jenkins SAML Single Sign On(SSO) Plugin versions 2.1.0 through 2.3.0, update to version 2.3.1 or later, which requires Overall/Administer permission to access the affected HTTP endpoint and only allows downloading a string representation if the current security realm is this plugin’s. As a temporary workaround, consider restricting access to the affected HTTP endpoint to minimize the risk of exploitation.