PT-2022-17122 · Jenkins · Jenkins Pipeline: Shared Groovy Libraries Plugin+2

Daniel Beck

·

Published

2022-02-15

·

Updated

2023-11-30

·

CVE-2022-25182

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Jenkins Pipeline: Shared Groovy Libraries Plugin versions 552.vd9cc05b8a2e1 and earlier Jenkins Pipeline: Deprecated Groovy Libraries Plugin versions 552.vd9cc05b8a2e1 and earlier
Description A sandbox bypass issue allows attackers with Item/Configure permission to execute arbitrary code on the Jenkins controller JVM using specially crafted library names if a global Pipeline library is already configured. The vulnerability arises from the use of Pipeline library names to create directories without proper canonicalization or sanitization.
Recommendations For Jenkins Pipeline: Shared Groovy Libraries Plugin versions 552.vd9cc05b8a2e1 and earlier, update to a version later than 552.vd9cc05b8a2e1. For Jenkins Pipeline: Deprecated Groovy Libraries Plugin versions 552.vd9cc05b8a2e1 and earlier, update to version 561.va ce0de3c2d69 or later, which sanitizes the names of Pipeline libraries when creating library directories.

Fix

Protection Mechanism Failure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-693

Related Identifiers

CVE-2022-25182
GHSA-7RCW-FWFH-2H2G
RHSA-2022:0871
RHSA-2022:1021
RHSA-2022:1025
RHSA-2022:1248
RHSA-2022:1420
RHSA-2022:1620

Affected Products

Jenkins
Jenkins Pipeline: Deprecated Groovy Libraries Plugin
Jenkins Pipeline: Shared Groovy Libraries Plugin