CVE-2020-2091

Name of the Vulnerable Software and Affected Versions Jenkins Amazon EC2 Plugin versions 1.47 and earlier

Description A missing permission check in the Jenkins Amazon EC2 Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL within the AWS region using attacker-specified credentials IDs obtained through another method. This issue may also potentially allow attackers to capture credentials stored in Jenkins, although this has not been confirmed. Additionally, the form validation methods are vulnerable to CSRF attacks because they do not require POST requests.

Recommendations For Jenkins Amazon EC2 Plugin versions 1.47 and earlier, update to version 1.48 or later, which requires POST requests and Overall/Administer permission for the affected form validation methods, thus mitigating the issue. As a temporary workaround, consider restricting access to the plugin's form validation methods to minimize the risk of exploitation.