GHSA-6xqj-wvgp-rqp8

Source

https://github.com/advisories/GHSA-6xqj-wvgp-rqp8

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6xqj-wvgp-rqp8/GHSA-6xqj-wvgp-rqp8.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-6xqj-wvgp-rqp8

Aliases

CVE-2020-2310

Published

2022-05-24T17:33:08Z

Modified

2024-02-16T08:16:33.362366Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Missing permission checks in Jenkins Ansible Plugin allow enumerating credentials IDs

Details

Jenkins Ansible Plugin 1.0 and earlier does not perform permission checks in methods implementing form validation.

This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability.

An enumeration of credentials IDs in Ansible Plugin 1.1 requires the appropriate permissions.

Database specific

{
    "nvd_published_at": "2020-11-04T15:15:00Z",
    "cwe_ids": [
        "CWE-862"
    ],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2022-12-22T03:34:18Z"
}

References

Affected packages

Maven / org.jenkins-ci.plugins:ansible

Package

Name: org.jenkins-ci.plugins:ansible; View open source insights on deps.dev
Purl: pkg:maven/org.jenkins-ci.plugins/ansible

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.1

Affected versions

0.*

0.1

0.2

0.3

0.3.1

0.4

0.5

0.6.1

0.6.2

0.8

1.*

1.0

Database specific

{
    "last_known_affected_version_range": "<= 1.0"
}