PT-2023-26196 · Macstadium+1 · Jenkins Orka By Macstadium Plugin+1

Alvaro Muñoz

Published

2023-07-12

Updated

2023-07-20

CVE-2023-37949

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Name of the Vulnerable Software and Affected Versions Jenkins Orka by MacStadium Plugin versions 1.33 and earlier

Description A missing permission check in the Jenkins Orka by MacStadium Plugin allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. The issue is related to an HTTP endpoint that does not perform a permission check, enabling attackers to exploit this weakness.

Recommendations For Jenkins Orka by MacStadium Plugin versions 1.33 and earlier, update to version 1.34 or later, which requires Overall/Administer permission to access the affected HTTP endpoint. As a temporary workaround, consider restricting access to the affected HTTP endpoint to minimize the risk of exploitation.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2023-37949

GHSA-4HM4-94G6-F23F

Affected Products

Jenkins

Jenkins Orka By Macstadium Plugin

PT-2023-26196 · Macstadium+1 · Jenkins Orka By Macstadium Plugin+1

CVE-2023-37949

Weakness Enumeration

Related Identifiers

Affected Products

References · 7