cnvd - cnvd-2022-49798

cnvd-2022-49798

Vulnerability from cnvd

Title: Jenkins Embeddable Build Status Plugin授权问题漏洞

Description:

Jenkins和Jenkins Plugin都是Jenkins开源的产品。Jenkins是一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建，部署和自动化任何项目。Jenkins Plugin是一个应用软件。

Jenkins Embeddable Build Status Plugin 2.0.3及之前版本存在授权问题漏洞，该漏洞源于无法在它为“未受保护”状态标志访问提供的HTTP端点中正确执行ViewStatus权限检查，攻击者可利用该漏洞能够获取任何指定的作业或构建的构建状态徽章图标。

Severity: 中

Patch Name: Jenkins Embeddable Build Status Plugin授权问题漏洞的补丁

Patch Description:

Jenkins Embeddable Build Status Plugin 2.0.3及之前版本存在授权问题漏洞，该漏洞源于无法在它为“未受保护”状态标志访问提供的HTTP端点中正确执行ViewStatus权限检查，攻击者可利用该漏洞能够获取任何指定的作业或构建的构建状态徽章图标。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794

Reference: https://vigilance.fr/vulnerability/Jenkins-Plugins-multiple-vulnerabilities-38650

Impacted products

Name
Jenkins Embeddable Build Status Plugin <=2.0.3

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-34180",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2022-34180"
    }
  },
  "description": "Jenkins\u548cJenkins Plugin\u90fd\u662fJenkins\u5f00\u6e90\u7684\u4ea7\u54c1\u3002Jenkins\u662f\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\u4e00\u4e2a\u5f00\u6e90\u81ea\u52a8\u5316\u670d\u52a1\u5668Jenkins\u63d0\u4f9b\u4e86\u6570\u767e\u4e2a\u63d2\u4ef6\u6765\u652f\u6301\u6784\u5efa\uff0c\u90e8\u7f72\u548c\u81ea\u52a8\u5316\u4efb\u4f55\u9879\u76ee\u3002Jenkins Plugin\u662f\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\n\nJenkins Embeddable Build Status Plugin 2.0.3\u53ca\u4e4b\u524d\u7248\u672c\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u65e0\u6cd5\u5728\u5b83\u4e3a\u201c\u672a\u53d7\u4fdd\u62a4\u201d\u72b6\u6001\u6807\u5fd7\u8bbf\u95ee\u63d0\u4f9b\u7684HTTP\u7aef\u70b9\u4e2d\u6b63\u786e\u6267\u884cViewStatus\u6743\u9650\u68c0\u67e5\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u80fd\u591f\u83b7\u53d6\u4efb\u4f55\u6307\u5b9a\u7684\u4f5c\u4e1a\u6216\u6784\u5efa\u7684\u6784\u5efa\u72b6\u6001\u5fbd\u7ae0\u56fe\u6807\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-49798",
  "openTime": "2022-07-06",
  "patchDescription": "Jenkins\u548cJenkins Plugin\u90fd\u662fJenkins\u5f00\u6e90\u7684\u4ea7\u54c1\u3002Jenkins\u662f\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\u4e00\u4e2a\u5f00\u6e90\u81ea\u52a8\u5316\u670d\u52a1\u5668Jenkins\u63d0\u4f9b\u4e86\u6570\u767e\u4e2a\u63d2\u4ef6\u6765\u652f\u6301\u6784\u5efa\uff0c\u90e8\u7f72\u548c\u81ea\u52a8\u5316\u4efb\u4f55\u9879\u76ee\u3002Jenkins Plugin\u662f\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\r\n\r\nJenkins Embeddable Build Status Plugin 2.0.3\u53ca\u4e4b\u524d\u7248\u672c\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u65e0\u6cd5\u5728\u5b83\u4e3a\u201c\u672a\u53d7\u4fdd\u62a4\u201d\u72b6\u6001\u6807\u5fd7\u8bbf\u95ee\u63d0\u4f9b\u7684HTTP\u7aef\u70b9\u4e2d\u6b63\u786e\u6267\u884cViewStatus\u6743\u9650\u68c0\u67e5\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u80fd\u591f\u83b7\u53d6\u4efb\u4f55\u6307\u5b9a\u7684\u4f5c\u4e1a\u6216\u6784\u5efa\u7684\u6784\u5efa\u72b6\u6001\u5fbd\u7ae0\u56fe\u6807\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Jenkins Embeddable Build Status Plugin\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Jenkins Embeddable Build Status Plugin \u003c=2.0.3"
  },
  "referenceLink": "https://vigilance.fr/vulnerability/Jenkins-Plugins-multiple-vulnerabilities-38650",
  "serverity": "\u4e2d",
  "submitTime": "2022-06-24",
  "title": "Jenkins Embeddable Build Status Plugin\u6388\u6743\u95ee\u9898\u6f0f\u6d1e"
}

CVE-2022-34180 (GCVE-0-2022-34180)

Vulnerability from cvelistv5

Published

2022-06-22 14:41

Modified

2024-08-03 08:16

Severity ?

Summary

Jenkins Embeddable Build Status Plugin 2.0.3 and earlier does not correctly perform the ViewStatus permission check in the HTTP endpoint it provides for "unprotected" status badge access, allowing attackers without any permissions to obtain the build status badge icon for any attacker-specified job and/or build.

References

▼	URL	Tags
	https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Jenkins project	Jenkins Embeddable Build Status Plugin	Version: unspecified <

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T08:16:17.217Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Jenkins Embeddable Build Status Plugin",
          "vendor": "Jenkins project",
          "versions": [
            {
              "lessThanOrEqual": "2.0.3",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Jenkins Embeddable Build Status Plugin 2.0.3 and earlier does not correctly perform the ViewStatus permission check in the HTTP endpoint it provides for \"unprotected\" status badge access, allowing attackers without any permissions to obtain the build status badge icon for any attacker-specified job and/or build."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-24T14:22:24.121Z",
        "orgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
        "shortName": "jenkins"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "jenkinsci-cert@googlegroups.com",
          "ID": "CVE-2022-34180",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Jenkins Embeddable Build Status Plugin",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.0.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Jenkins project"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Jenkins Embeddable Build Status Plugin 2.0.3 and earlier does not correctly perform the ViewStatus permission check in the HTTP endpoint it provides for \"unprotected\" status badge access, allowing attackers without any permissions to obtain the build status badge icon for any attacker-specified job and/or build."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-863: Incorrect Authorization"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794",
              "refsource": "CONFIRM",
              "url": "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2794"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
    "assignerShortName": "jenkins",
    "cveId": "CVE-2022-34180",
    "datePublished": "2022-06-22T14:41:06",
    "dateReserved": "2022-06-21T00:00:00",
    "dateUpdated": "2024-08-03T08:16:17.217Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted