CVE-2022-25208

Name of the Vulnerable Software and Affected Versions Jenkins Chef Sinatra Plugin versions 1.20 and earlier

Description A missing permission check in the plugin allows attackers with Overall/Read permission to have Jenkins send an HTTP request to an attacker-controlled URL and have it parse an XML response. This also enables XML external entity (XXE) attacks, as the plugin's XML parser is not configured to prevent such attacks, allowing for the extraction of secrets from the Jenkins controller or server-side request forgery. Furthermore, the form validation method is vulnerable to cross-site request forgery (CSRF) attacks, as it does not require POST requests.

Recommendations For Jenkins Chef Sinatra Plugin versions 1.20 and earlier, consider disabling the form validation method until a patch is available to prevent attackers from exploiting the missing permission check and subsequent vulnerabilities. Restrict access to the plugin's functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.