PT-2023-31637 · Jenkins · Jenkins Nexus Platform Plugin+1
Andrea Chiera
·
Publicado
2023-12-13
·
Atualizado
2023-12-18
·
CVE-2023-50768
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Jenkins Nexus Platform Plugin versions 3.18.0-03 and earlier
Description
A cross-site request forgery (CSRF) vulnerability allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. The vulnerability is due to the lack of permission checks in methods implementing form validation, which can be exploited by attackers with Overall/Read permission. Additionally, the form validation methods do not require POST requests, further contributing to the CSRF vulnerability.
Recommendations
For Jenkins Nexus Platform Plugin versions 3.18.0-03 and earlier, update to version 3.18.1-01 or later, which requires POST requests and Overall/Administer permission for the affected form validation methods, mitigating the CSRF vulnerability.
As a temporary workaround, consider restricting access to the form validation methods to users with Overall/Administer permission until a patch is available.
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Jenkins
Jenkins Nexus Platform Plugin