PT-2018-9345 · Jenkins · Jenkins Html Publisher Plugin+1

Kalle Niemitalo

Published

2018-05-08

Updated

2022-05-14

CVE-2018-1000175

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Jenkins HTML Publisher Plugin versions 1.15 and older

Description A path traversal issue exists in the HtmlPublisherTarget.java file, allowing attackers who can configure the HTML Publisher build step to override arbitrary files on the Jenkins master. This issue is related to the handling of report names, which in vulnerable versions do not properly escape non-alphanumeric characters for use as part of a URL and as a directory name.

Recommendations For Jenkins HTML Publisher Plugin versions 1.15 and older, update to version 1.16 or newer, which escapes non-alphanumeric characters in report names for use as part of a URL and as a directory name, addressing the path traversal issue.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2018-1000175

GHSA-4X63-3P7Q-XMH7

Affected Products

Jenkins

Jenkins Html Publisher Plugin

PT-2018-9345 · Jenkins · Jenkins Html Publisher Plugin+1

CVE-2018-1000175

Weakness Enumeration

Related Identifiers

Affected Products

References · 5