CVE-2023-35149

Name of the Vulnerable Software and Affected Versions Jenkins Digital.ai App Management Publisher Plugin versions 2.6 and earlier

Description A missing permission check in the plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL, capturing credentials stored in Jenkins. The issue also involves several HTTP endpoints that do not perform permission checks, allowing attackers to use attacker-specified credentials IDs to capture credentials. Additionally, these endpoints are vulnerable to cross-site request forgery (CSRF) as they do not require POST requests.

Recommendations For Jenkins Digital.ai App Management Publisher Plugin versions 2.6 and earlier, consider disabling the plugin until a patch is available to prevent attackers from exploiting the missing permission check and capturing credentials. Restrict access to the affected HTTP endpoints to minimize the risk of exploitation. Avoid using the plugin with Overall/Read permission until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.