Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS00OWh4LTltbTItNzY3Nc4AA_6x

Jenkins OpenId Connect Authentication Plugin lacks audience claim validation

Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a_1de8 and earlier does not check the aud (Audience) claim of an ID Token during its authentication flow, a value to verify the token is issued for the correct client.

This vulnerability may allow attackers to subvert the authentication flow, potentially gaining administrator access to Jenkins.

OpenId Connect Authentication Plugin 4.355.v3a_fb_fca_b_96d4 checks the aud (Audience) claim of an ID Token during its authentication flow.

Permalink: https://github.com/advisories/GHSA-49hx-9mm2-7675
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS00OWh4LTltbTItNzY3Nc4AA_6x
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Critical
Classification: General
Published: 19 days ago
Updated: 19 days ago

CVSS Score: 8.1
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Identifiers: GHSA-49hx-9mm2-7675, CVE-2024-47806
References:

• https://nvd.nist.gov/vuln/detail/CVE-2024-47806
• https://www.jenkins.io/security/advisory/2024-10-02/#SECURITY-3441%20(1)
• https://github.com/advisories/GHSA-49hx-9mm2-7675

Blast Radius: 1.0

Affected Packages