Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1jamdtLTl2YzktNTZteM4AA4qw
Path traversal vulnerability in Jenkins Matrix Project Plugin
Jenkins Matrix Project Plugin 822.v01b_8c85d16d2 and earlier does not sanitize user-defined axis names of multi-configuration projects submitted through the config.xml REST API endpoint.
This allows attackers with Item/Configure permission to create or replace any config.xml file on the Jenkins controller file system with content not controllable by the attackers.
Matrix Project Plugin 822.824.v14451b_c0fd42 sanitizes user-defined axis names of Multi-configuration project.
Permalink: https://github.com/advisories/GHSA-cjgm-9vc9-56mxJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1jamdtLTl2YzktNTZteM4AA4qw
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: 3 months ago
Updated: 3 months ago
CVSS Score: 4.6
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
Identifiers: GHSA-cjgm-9vc9-56mx, CVE-2024-23900
References:
- https://nvd.nist.gov/vuln/detail/CVE-2024-23900
- https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3289
- http://www.openwall.com/lists/oss-security/2024/01/24/6
- https://github.com/jenkinsci/matrix-project-plugin/commit/f7a5b24905f69896234da34250171c1be80cddb4
- https://github.com/advisories/GHSA-cjgm-9vc9-56mx
Blast Radius: 1.0
Affected Packages
maven:org.jenkins-ci.plugins:matrix-project
Affected Version Ranges: < 822.824.v14451bFixed in: 822.824.v14451b