CVE-2021-21645 – org.jenkins-ci.plugins:config-file-provider

Package

Manager: maven
Name: org.jenkins-ci.plugins:config-file-provider
Vulnerable Version: >=0 <3.7.1

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00118 pctl0.313

Details

Missing permission checks in Jenkins Config File Provider Plugin allow enumerating configuration file IDs Jenkins Config File Provider Plugin 3.7.0 and earlier does not perform permission checks in several HTTP endpoints. This allows attackers with Overall/Read permission to enumerate configuration file IDs. An enumeration of configuration file IDs in Jenkins Config File Provider Plugin 3.7.1 requires the appropriate permissions.

Metadata

Created: 2022-05-24T17:48:06Z
Modified: 2023-10-27T14:28:15Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-2959-fj73-hm8p/GHSA-2959-fj73-hm8p.json
CWE IDs: ["CWE-862"]
Alternative ID: GHSA-2959-fj73-hm8p
Finding: F039
Auto approve: 1