SB2023051807 - Multiple vulnerabilities in Jenkins Code Dx plugin 

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2023051807

SB2023051807 - Multiple vulnerabilities in Jenkins Code Dx plugin

Published: May 18, 2023

Security Bulletin ID SB2023051807
Severity
Low
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Data manipulation

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Cross-site request forgery (CVE-ID: CVE-2023-2195)

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.


2) Information disclosure (CVE-ID: CVE-2023-2633)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the job configuration form does not mask the Code Dx server API keys. A remote user can gain unauthorized access to sensitive information on the system.


3) Unprotected storage of credentials (CVE-ID: CVE-2023-2632)

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to the affected plugin stores Code Dx server API keys unencrypted in job config.xml files on the Jenkins controller as part of its configuration. A remote user can view these API keys.


4) Information disclosure (CVE-ID: CVE-2023-2196)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the affected plugin does not perform a permission check in a method implementing form validation. A remote user can check for the existence of an attacker-specified file path on an agent file system.


5) Improper access control (CVE-ID: CVE-2023-2631)

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to the affected plugin does not perform permission checks in several HTTP endpoints. A remote user can connect to an attacker-specified URL.


Remediation

Install update from vendor's website.

References