PT-2020-15402 · Jenkins · Jenkins Amazon Ec2 Plugin+1
Wadeck Follonier
·
Published
2020-05-06
·
Updated
2023-10-25
·
CVE-2020-2188
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Jenkins Amazon EC2 Plugin versions 1.50.1 and earlier
Description
A missing permission check in form-related methods of the Jenkins Amazon EC2 Plugin allows users with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins. The plugin provides a list of applicable credentials IDs, but this functionality does not correctly check permissions, enabling any user with Overall/Read permission to obtain a list of valid credentials IDs. These IDs can be used as part of an attack to capture the credentials using another vulnerability.
Recommendations
For Jenkins Amazon EC2 Plugin versions 1.50.1 and earlier, update to version 1.50.2 or later, which requires Overall/Administer permission for the enumeration of credentials IDs.
Fix
Incorrect Authorization
Improper Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Jenkins
Jenkins Amazon Ec2 Plugin