GHSA-p37p-wg92-2fc4

Source

https://github.com/advisories/GHSA-p37p-wg92-2fc4

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/09/GHSA-p37p-wg92-2fc4/GHSA-p37p-wg92-2fc4.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-p37p-wg92-2fc4

Aliases

CVE-2022-41252

Published

2022-09-22T00:00:26Z

Modified

2023-11-08T04:10:29.127569Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Missing permission checks in Jenkins CONS3RT Plugin allow enumerating credentials IDs

Details

CONS3RT Plugin 1.0.0 and earlier does not perform permission checks in several HTTP endpoints.

This allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. Those can be used as part of an attack to capture the credentials using another vulnerability.

Database specific

{
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-862"
    ],
    "github_reviewed_at": "2022-12-06T00:51:24Z",
    "nvd_published_at": "2022-09-21T16:15:00Z",
    "severity": "MODERATE"
}

References

Affected packages

Maven / org.jenkins-ci.plugins:cons3rt

Package

Name: org.jenkins-ci.plugins:cons3rt; View open source insights on deps.dev
Purl: pkg:maven/org.jenkins-ci.plugins/cons3rt

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.0.0

Affected versions

1.*

1.0.0