PT-2022-4035 · Jenkins · Jenkins Rhnpush-Plugin+1
Kevin Guerroudj
·
Published
2022-07-27
·
Updated
2023-11-22
·
CVE-2022-36892
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Jenkins rhnpush-plugin Plugin versions 0.5.1 and earlier
Description
The issue is related to insufficient authorization procedures in the Jenkins rhnpush-plugin. This allows attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specified file patterns match workspace contents. A sequence of requests can be used to effectively list workspace contents.
Recommendations
For Jenkins rhnpush-plugin Plugin versions 0.5.1 and earlier, update to version 0.5.2 or later, which requires Item/Workspace permission to validate patterns with workspace contents. As a temporary workaround, consider restricting access to the form validation method to minimize the risk of exploitation.
Fix
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jenkins
Jenkins Rhnpush-Plugin