CVE-2022-43416

Name of the Vulnerable Software and Affected Versions Jenkins Katalon Plugin versions 1.0.32 and earlier

Description The issue allows attackers who can control agent processes to invoke Katalon on the Jenkins controller with attacker-controlled version, install location, and arguments. Additionally, attackers who can create files on the Jenkins controller, such as those with Item/Configure permission, can invoke arbitrary OS commands. This is due to an agent/controller message that does not limit where it can be executed and allows invoking Katalon with configurable arguments.

Recommendations For Jenkins Katalon Plugin versions 1.0.32 and earlier, update to version 1.0.33 or later, which changes the message type to controller-to-agent, preventing execution on the controller. As a temporary workaround, consider restricting access to the Katalon plugin to minimize the risk of exploitation. Avoid using the Katalon plugin with configurable arguments until the issue is resolved.