GHSA-h648-gj34-5x4r

Source

https://github.com/advisories/GHSA-h648-gj34-5x4r

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-h648-gj34-5x4r/GHSA-h648-gj34-5x4r.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-h648-gj34-5x4r

Aliases

CVE-2021-43578

Published

2022-05-24T19:20:32Z

Modified

2023-11-08T04:07:11.016291Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H CVSS Calculator

Summary

Agent-to-controller security bypass in Jenkins Squash TM Publisher (Squash4Jenkins) Plugin allows writing arbitrary files

Details

Jenkins Squash TM Publisher (Squash4Jenkins) Plugin 1.0.0 and earlier implements an agent-to-controller message that does not implement any validation of its input, allowing attackers able to control agent processes to replace arbitrary files on the Jenkins controller file system with an attacker-controlled JSON string.

Database specific

{
    "nvd_published_at": "2021-11-12T11:15:00Z",
    "cwe_ids": [
        "CWE-693"
    ],
    "severity": "HIGH",
    "github_reviewed": true,
    "github_reviewed_at": "2022-12-15T16:39:54Z"
}

References

Affected packages

Maven / org.jenkins-ci.plugins:squashtm-publisher-plugin

Package

Name: org.jenkins-ci.plugins:squashtm-publisher-plugin; View open source insights on deps.dev
Purl: pkg:maven/org.jenkins-ci.plugins/squashtm-publisher-plugin

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.0.0