CVE-2023-37964

Name of the Vulnerable Software and Affected Versions Jenkins ElasticBox CI Plugin versions 5.0.1 and earlier

Description A cross-site request forgery (CSRF) vulnerability allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs, capturing credentials stored in Jenkins. The vulnerability is also characterized by a lack of permission checks in several HTTP endpoints, which can be exploited by attackers with Overall/Read permission. Additionally, these endpoints do not require POST requests, contributing to the CSRF vulnerability.

Recommendations For Jenkins ElasticBox CI Plugin versions 5.0.1 and earlier, update to a version that includes the necessary permission checks and CSRF protections. As a temporary workaround, consider restricting access to the affected HTTP endpoints to minimize the risk of exploitation. Restrict the use of attacker-specified credentials IDs to prevent capturing credentials stored in Jenkins. At the moment, there is no information about a newer version that contains a fix for this vulnerability.