CVE-2022-36909

Name of the Vulnerable Software and Affected Versions Jenkins OpenShift Deployer Plugin versions 1.2.0 and earlier

Description A missing permission check in the Jenkins OpenShift Deployer Plugin allows attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system and to upload a SSH key file from the Jenkins controller file system to an attacker-specified URL. This issue is related to errors in authorization. Exploitation of this issue may allow a remote attacker to bypass existing security restrictions and elevate their privileges.

Recommendations For Jenkins OpenShift Deployer Plugin versions 1.2.0 and earlier, consider disabling the plugin until a patch is available to prevent attackers from exploiting the missing permission check. As a temporary workaround, restrict access to the Jenkins controller file system to minimize the risk of exploitation. Avoid using the Overall/Read permission for attackers to prevent them from checking for the existence of an attacker-specified file path and uploading a SSH key file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.