Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS1tM3d2LWZyOHYtZm1oN84AAR2w
Jenkins Build-Publisher plugin has Insufficiently Protected Credentials
Jenkins Build-Publisher plugin version 1.21 and earlier stores credentials to other Jenkins instances in the file hudson.plugins.build_publisher.BuildPublisher.xml in the Jenkins master home directory. These credentials were stored unencrypted, allowing anyone with local file system access to access them. Additionally, the credentials were also transmitted in plain text as part of the configuration form. This could result in exposure of the credentials through browser extensions, cross-site scripting vulnerabilities, and similar situations. Build-Publisher Plugin 1.22 encrypts the credentials on disk, and only transmits their encrypted form to users viewing the configuration form.
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1tM3d2LWZyOHYtZm1oN84AAR2w
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: almost 2 years ago
Updated: about 1 year ago
CVSS Score: 7.8
CVSS vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Identifiers: GHSA-m3wv-fr8v-fmh7, CVE-2017-1000387
References:
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000387
- https://jenkins.io/security/advisory/2017-10-23/
- http://www.securityfocus.com/bid/101544
- https://github.com/advisories/GHSA-m3wv-fr8v-fmh7
Affected Packages
maven:org.jenkins-ci.plugins:build-publisher
Affected Version Ranges: <= 1.21Fixed in: 1.22