#VU89154 Security features bypass in Script Security - CVE-2024-34145

Cybersecurity Help s.r.o.

Published: 2024-05-06

Vulnerability identifier: #VU89154

Vulnerability risk: Medium

CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-34145

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Script Security
Web applications / Modules and components for CMS

Vendor: Jenkins

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the sandbox bypass issue involving sandbox-defined classes that shadow specific non-sandbox-defined classes. A remote user can define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Script Security: 1335.vf07d9ce377a_e

External links
http://www.jenkins.io/security/advisory/2024-05-02/#SECURITY-3341
http://www.openwall.com/lists/oss-security/2024/05/02/3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Red Hat Product OCP Tools 4.13. Red Hat Product Security has rated this update as having a security impact of Important update for OpenShift Jenkins

Red Hat Product OCP Tools 4.12. Red Hat Product Security has rated this update as having a security impact of Important update for OpenShift Jenkins

Red Hat Product OCP Tools 4.14. Red Hat Product Security has rated this update as having a security impact of Important update for Openshift Jenkins

Multiple vulnerabilities in Jenkins Script Security plugin