CVE-2018-1000603 – org.jenkins-ci.plugins:openstack-cloud

Package

Manager: maven
Name: org.jenkins-ci.plugins:openstack-cloud
Vulnerable Version: >=0 <2.37

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.00113 pctl0.30579

Details

CSRF vulnerability and missing permission checks in Openstack Cloud Plugin allowed capturing credentials A exposure of sensitive information vulnerability exists in Jenkins Openstack Cloud Plugin 2.35 and earlier in BootSource.java, InstancesToRun.java, JCloudsCleanupThread.java, JCloudsCloud.java, JCloudsComputer.java, JCloudsPreCreationThread.java, JCloudsRetentionStrategy.java, JCloudsSlave.java, JCloudsSlaveTemplate.java, LauncherFactory.java, OpenstackCredentials.java, OpenStackMachineStep.java, SlaveOptions.java, SlaveOptionsDescriptor.java that allows attackers with Overall/Read access to Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins, and to cause Jenkins to submit HTTP requests to attacker-specified URLs.

Metadata

Created: 2022-05-13T01:48:38Z
Modified: 2023-12-15T15:05:51Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-grf8-94q5-4phx/GHSA-grf8-94q5-4phx.json
CWE IDs: ["CWE-200"]
Alternative ID: GHSA-grf8-94q5-4phx
Finding: F038
Auto approve: 1