Jenkins Multiple Input Validation Security Vulnerabilities
BID:106774
Info
Jenkins Multiple Input Validation Security Vulnerabilities
| Bugtraq ID: | 106774 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 28 2019 12:00AM |
| Updated: | Jan 28 2019 12:00AM |
| Credit: | Adam Willard, Chris Jacobs, Comscore, Inc., Systems Engineer, Daniel Beck, CloudBees, Inc., James Nord, Kalle Niemitalo, Procomp Solutions Oy, Man Shum ( https://www.instagram.com/evmannn/ ) from Hong Kong, Mikhail Egorov, security researcher, https://twit |
| Vulnerable: |
Jenkins Warnings Next Generation 2.1.1 Jenkins Warnings Next Generation 1.0.1 Jenkins Warnings Next Generation 2.1 Jenkins Warnings 5.0 Jenkins Token Macro 2.5 Jenkins Script Security 1.9 Jenkins Script Security 1.8 Jenkins Script Security 1.7 Jenkins Script Security 1.6 Jenkins Script Security 1.50 Jenkins Script Security 1.5 Jenkins Script Security 1.49 Jenkins Script Security 1.48 Jenkins Script Security 1.47 Jenkins Script Security 1.46 Jenkins Script Security 1.45 Jenkins Script Security 1.44 Jenkins Script Security 1.43 Jenkins Script Security 1.42 Jenkins Script Security 1.41 Jenkins Script Security 1.40 Jenkins Script Security 1.4 Jenkins Script Security 1.39 Jenkins Script Security 1.38 Jenkins Script Security 1.31 Jenkins Script Security 1.30 Jenkins Script Security 1.3 Jenkins Script Security 1.29 Jenkins Script Security 1.28 Jenkins Script Security 1.27 Jenkins Script Security 1.26 Jenkins Script Security 1.25 Jenkins Script Security 1.24 Jenkins Script Security 1.23 Jenkins Script Security 1.22 Jenkins Script Security 1.21 Jenkins Script Security 1.20 Jenkins Script Security 1.2 Jenkins Script Security 1.19 Jenkins Script Security 1.18 Jenkins Script Security 1.17 Jenkins Script Security 1.16 Jenkins Script Security 1.15 Jenkins Script Security 1.14 Jenkins Script Security 1.13 Jenkins Script Security 1.12 Jenkins Script Security 1.11 Jenkins Script Security 1.10 Jenkins Script Security 1.1 Jenkins Script Security 1.0 Jenkins OpenId 1.4 Jenkins Monitoring Plugin 1.74 Jenkins Kanboard 1.5.10 Jenkins Job Import 3.0 Jenkins Job Import 2.1 Jenkins Groovy 2.0 Jenkins GitHub Authentication 0.29 Jenkins Git 3.9.1 Jenkins Config File Provider 3.4.1 Jenkins Config File Provider 2.16.2 Jenkins Config File Provider 2.16.1 Jenkins Config File Provider 2.16 Jenkins Config File Provider 2.15 Jenkins Config File Provider 2.13 Jenkins Config File Provider 2.11 Jenkins Config File Provider 2.10 Jenkins Config File Provider 2.0 Jenkins Config File Provider 1.0 Jenkins Blue Ocean 1.10.1 Jenkins Blue Ocean 1.1.6 Jenkins Blue Ocean 1.1.5 Jenkins Blue Ocean 1.1.4 Jenkins Blue Ocean 1.1.2 Jenkins Blue Ocean 1.1.1 Jenkins Blue Ocean 1.1 Jenkins Active Directory 2.9 Jenkins Active Directory 2.10 |
| Not Vulnerable: |
Jenkins Warnings Next Generation 2.1.2 Jenkins Warnings 5.0.1 Jenkins Token Macro 2.6 Jenkins Script Security 1.51 Jenkins OpenId 1.5 Jenkins Monitoring Plugin 1.75 Jenkins Kanboard 1.5.11 Jenkins Job Import 3.1 Jenkins Groovy 2.1 Jenkins GitHub Authentication 0.31 Jenkins Git 3.9.2 Jenkins Config File Provider 3.5 Jenkins Blue Ocean 1.10.2 Jenkins Active Directory 2.11 |
Discussion
Jenkins Multiple Input Validation Security Vulnerabilities
Jenkins is prone to the following vulnerabilities:
1. Multiple security-bypass vulnerabilities
2. Multiple cross-site scripting vulnerabilities
3. Multiple cross-site request forgery vulnerabilities
4. Multiple information disclosure vulnerabilities
5. Multiple security weaknesses
6. A clickjacking vulnerability
7. A session fixation vulnerability
An attacker may leverage these issues to execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information, hijack an arbitrary session, perform certain administrative actions and gain unauthorized access to the affected application, or cause denial-of-service condition. This may aid in further attacks.
The following product versions are vulnerable:
Active Directory Plugin version 2.10 and prior are vulnerable
Blue Ocean Plugin version 1.10.1 and prior are vulnerable
Config File Provider Plugin version 3.4.1 and prior are vulnerable
Git Plugin version 3.9.1 and prior are vulnerable
GitHub Authentication Plugin version 0.29 and prior are vulnerable
Groovy Plugin version 2.0 and prior are vulnerable
Job Import Plugin version 2.1 and prior are vulnerable
Job Import Plugin version 3.0 and prior are vulnerable
Kanboard Plugin version 1.5.10 and prior are vulnerable
Monitoring Plugin version 1.74.0 and prior are vulnerable
OpenId Connect Authentication Plugin version 1.4 and prior are vulnerable
Script Security Plugin version 1.50 and prior are vulnerable
Token Macro Plugin version 2.5 and prior are vulnerable
Warnings Plugin version 5.0.0 and prior are vulnerable
Warnings Next Generation Plugin version 1.0.1, 2.1.1 and prior are vulnerable
Jenkins is prone to the following vulnerabilities:
1. Multiple security-bypass vulnerabilities
2. Multiple cross-site scripting vulnerabilities
3. Multiple cross-site request forgery vulnerabilities
4. Multiple information disclosure vulnerabilities
5. Multiple security weaknesses
6. A clickjacking vulnerability
7. A session fixation vulnerability
An attacker may leverage these issues to execute arbitrary script code in the browser of the victim in the context of the affected site, steal cookie-based authentication credentials, gain access to sensitive information, hijack an arbitrary session, perform certain administrative actions and gain unauthorized access to the affected application, or cause denial-of-service condition. This may aid in further attacks.
The following product versions are vulnerable:
Active Directory Plugin version 2.10 and prior are vulnerable
Blue Ocean Plugin version 1.10.1 and prior are vulnerable
Config File Provider Plugin version 3.4.1 and prior are vulnerable
Git Plugin version 3.9.1 and prior are vulnerable
GitHub Authentication Plugin version 0.29 and prior are vulnerable
Groovy Plugin version 2.0 and prior are vulnerable
Job Import Plugin version 2.1 and prior are vulnerable
Job Import Plugin version 3.0 and prior are vulnerable
Kanboard Plugin version 1.5.10 and prior are vulnerable
Monitoring Plugin version 1.74.0 and prior are vulnerable
OpenId Connect Authentication Plugin version 1.4 and prior are vulnerable
Script Security Plugin version 1.50 and prior are vulnerable
Token Macro Plugin version 2.5 and prior are vulnerable
Warnings Plugin version 5.0.0 and prior are vulnerable
Warnings Next Generation Plugin version 1.0.1, 2.1.1 and prior are vulnerable
Exploit / POC
Jenkins Multiple Input Validation Security Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Jenkins Multiple Input Validation Security Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Jenkins Multiple Input Validation Security Vulnerabilities
References:
References:
- Active Directory Plugin (Jenkins)
- Config File Provider Homepage (Jenkins)
- Git plugin (Jenkins)
- GitHub Authentication Plugin (Jenkins)
- Groovy Plugin (Jenkins)
- Jenkins Home Page (Jenkins)
- Jenkins Product Page (Jenkins)
- Job Import Plugin (Jenkins)
- Kanboard Plugin (Jenkins)
- Monitoring Plugin (Jenkins)
- Openid Plugin (Jenkins)
- Script Security Plugin Homepage (Jenkins)
- Token Macro Plugin (Jenkins)
- Warnings Next Generation Plugin (Jenkins)
- Warnings Plugin (Jenkins)
- Jenkins Security Advisory 2019-01-28 (Jenkins)