PT-2019-8717 · Jenkins · Jenkins
Oleg Nenashev
·
Published
2019-01-09
·
Updated
2022-05-14
·
CVE-2018-1000406
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Jenkins versions 2.145 and earlier
Jenkins LTS versions 2.138.1 and earlier
Description
A path traversal issue exists that allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory. This results in an arbitrary file write on the Jenkins master when scheduling a build. The issue is related to the
FileParameterValue.java file in core/src/main/java/hudson/model/.Recommendations
For Jenkins versions 2.145 and earlier, update to a version that contains a fix for this issue.
For Jenkins LTS versions 2.138.1 and earlier, update to a version that contains a fix for this issue.
As a temporary workaround, consider restricting the Job/Configure permission to minimize the risk of exploitation.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jenkins