Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS02anAyLWhnZ3gtOGo3cM4AAYUC
Jenkins GitHub Branch Source Plugin allows any user with Overall/Read permission to get list of valid credentials IDs
GitHub Branch Source provides a list of applicable credential IDs to allow users configuring a job to select the one they'd like to use. This functionality did not check permissions, allowing any user with Overall/Read permission to get a list of valid credentials IDs. Those could be used as part of an attack to capture the credentials using another vulnerability. An enumeration of credentials IDs in this plugin now requires the permission to have Extended Read permission (when that permission is enabled; otherwise Configure permission) to the job in whose context credentials are being accessed. If no job context exists, Overall/Administer permission is required.
Permalink: https://github.com/advisories/GHSA-6jp2-hggx-8j7pJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS02anAyLWhnZ3gtOGo3cM4AAYUC
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: almost 2 years ago
Updated: about 1 year ago
CVSS Score: 4.3
CVSS vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Identifiers: GHSA-6jp2-hggx-8j7p, CVE-2017-1000087
References:
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000087
- https://jenkins.io/security/advisory/2017-07-10/
- https://github.com/advisories/GHSA-6jp2-hggx-8j7p
Affected Packages
maven:org.jenkins-ci.plugins:github-branch-source
Affected Version Ranges: < 2.2.0-alpha-1Fixed in: 2.2.0-alpha-1