CVE-2022-25175

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Jenkins Pipeline: Multibranch Plugin versions 706.vd43c65dec013 and earlier

Description The issue allows attackers with Item/Configure permission to invoke arbitrary OS commands on the controller through crafted SCM contents. This is possible due to the use of the same checkout directories for distinct SCMs for the readTrusted step.

Recommendations For Jenkins Pipeline: Multibranch Plugin versions 706.vd43c65dec013 and earlier, consider restricting access to the readTrusted step to minimize the risk of exploitation. As a temporary workaround, limit the permissions of users with Item/Configure access to prevent them from invoking arbitrary OS commands on the controller. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2022-25175

GHSA-PJ84-QJM3-77MG

RHSA-2022:0871

RHSA-2022:1021

RHSA-2022:1025

RHSA-2022:1248

RHSA-2022:1420

RHSA-2022:1620

Affected Products

Jenkins

Jenkins Pipeline: Multibranch Plugin

CVE-2022-25175

Weakness Enumeration

Related Identifiers

Affected Products

References · 6