CVE-2020-2228 – org.jenkins-ci.plugins:gitlab-oauth

Package

Manager: maven
Name: org.jenkins-ci.plugins:gitlab-oauth
Vulnerable Version: >=0 <1.6

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.00145 pctl0.3543

Details

Improper authorization of users and groups with the same base name in Jenkins GitLab Authentication Plugin GitLab Authentication Plugin 1.5 and earlier does not differentiate between user names and hierarchical group names when performing authorization. This allows an attacker with permissions to create groups in GitLab to gain the privileges granted to another user or group. GitLab Authentication Plugin 1.6 performs user name and group name authorization checks using the appropriate GitLab APIs.

Metadata

Created: 2022-05-24T17:23:39Z
Modified: 2022-12-28T23:44:46Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qq38-mxpq-rrpj/GHSA-qq38-mxpq-rrpj.json
CWE IDs: ["CWE-863"]
Alternative ID: GHSA-qq38-mxpq-rrpj
Finding: F006
Auto approve: 1