Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1ocndjLXBxZm0tZzZxZs4AAYUB
Jenkins Subversion Plugin Cross-Site Request Forgery vulnerability
Subversion Plugin connects to a user-specified Subversion repository as part of form validation (e.g. to retrieve a list of tags). This functionality improperly checked permissions, allowing any user with Item/Build permission (but not Item/Configure) to connect to any web server or Subversion server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery attacks. As of version 2.9, this functionality properly checks permissions and is only available via POST.
Permalink: https://github.com/advisories/GHSA-hrwc-pqfm-g6qfJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1ocndjLXBxZm0tZzZxZs4AAYUB
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: about 1 year ago
Updated: 4 months ago
CVSS Score: 6.5
CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Identifiers: GHSA-hrwc-pqfm-g6qf, CVE-2017-1000085
References:
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000085
- https://jenkins.io/security/advisory/2017-07-10/
- https://web.archive.org/web/20171119065136/http://www.securityfocus.com/bid/99574
- https://github.com/advisories/GHSA-hrwc-pqfm-g6qf
Affected Packages
maven:org.jenkins-ci.plugins:subversion
Versions: < 2.9Fixed in: 2.9