cvelistv5 - cve-2017-1000091

CVE-2017-1000091 (GCVE-0-2017-1000091)

Vulnerability from cvelistv5 – Published: 2017-10-04 01:00 – Updated: 2024-08-05 21:53

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

https://jenkins.io/security/advisory/2017-07-10/

x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T21:53:06.792Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://jenkins.io/security/advisory/2017-07-10/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "dateAssigned": "2017-08-22T00:00:00",
      "datePublic": "2017-10-03T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-04T00:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://jenkins.io/security/advisory/2017-07-10/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_ASSIGNED": "2017-08-22T17:29:33.311579",
          "ID": "CVE-2017-1000091",
          "REQUESTER": "ml@beckweb.net",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://jenkins.io/security/advisory/2017-07-10/",
              "refsource": "CONFIRM",
              "url": "https://jenkins.io/security/advisory/2017-07-10/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2017-1000091",
    "datePublished": "2017-10-04T01:00:00",
    "dateReserved": "2017-07-13T00:00:00",
    "dateUpdated": "2024-08-05T21:53:06.792Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"A511F648-0D88-4D1F-9EA1-851C066EA9BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-2:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"B6096BE5-B2AA-4DB5-AF31-D137C562CC7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-3:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"F7508088-0FCC-47B5-9562-60F929B45088\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-4:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"D7A04FB1-3555-47BF-844A-75714A2B8A3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.0:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"6FF29165-A7E7-4338-A805-95F9D35C82EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.1:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"F5E10E7C-A96E-4D72-901A-A975C5C74933\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.2:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"2F4EC898-A3AD-4749-80D0-3D8B4E0A62A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.3:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"55DD8799-3D69-46C3-BAEF-3AE8253A48D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.4:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"3D30BBA5-114F-4222-9C1C-2452D47E1263\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.4:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"EABBCDC8-187C-4E98-A54F-E408BEA40D80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.5:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"5AF85B9C-00AC-4C01-8979-DF1EE693BA7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.6:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"E37CFC39-1337-42C1-A9E8-D3D1DC2885BE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.7:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"31AE1E2F-64E9-4A1D-A9CB-F4C314B0AB09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.8:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"403B2716-91C6-407A-8670-F848D34D0DEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.8.1:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"7CBFB929-A823-4681-A59D-0B8F4961D78F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.9:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"7E263793-F71F-4DCD-8C3D-5197D90F1C3D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:1.10:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"61E15CCA-CCCB-4FEB-AED2-D412A69FEEED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.0:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"F4C6C0E5-20E9-4864-A6C1-53656F2852DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"2418A083-456F-457B-A77E-4D1C824E36D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-2:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"26CDE908-A6A1-4AB1-98C0-0C0E4A5980E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"AD5E5DF9-9C36-4694-8BF9-BD0414AA94B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"0DC703A2-C0AD-404B-B396-6584B585F9DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-2:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"1EB3064E-F4A0-47CF-9AC1-5718B01429BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-3:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"BC77DA15-8BCE-4FB2-8167-ADFA9A3F2198\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-4:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"E2B6D674-9F05-4294-B84D-0181460DDB07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-5:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"42B72E35-5768-4BE1-A758-D2C7D8251C52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-6:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"D357735D-58BB-42C8-A8DA-0F3970BC4A11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.2:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"5F904453-6C74-43DE-A21F-E0F3C060EA52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.3:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"64374558-36DA-4841-8B20-2DD3188BD1F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.4:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"32C595AA-EE76-4446-BD6B-576ED2EDE5AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.4:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"ECDB4CDE-7547-49E9-9DF7-F3DAEDB0FF72\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.5:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"016AC1F5-FC7E-4D94-B13B-B375E3483F9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.6:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"3A3A960B-EA82-4EEC-A6B8-02D1246534CA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.0.7:*:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"C0782CF8-414A-4061-AAEC-20166C658A91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"BF2EF3DA-DBBE-458E-ACFC-2A330A3915A3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-2:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"1B7FD58E-9959-4C40-9846-57ED0CA9A36E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-3:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"299AE4BC-BD79-4629-9C47-6B517482FBFE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-4:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"E4F9BF9F-197C-4027-81D5-8E9A7F92ED79\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:github_branch_source:2.2.0:beta-1:*:*:*:jenkins:*:*\", \"matchCriteriaId\": \"69C82FCF-CEF6-4CE7-868F-C8E2F181A034\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery.\"}, {\"lang\": \"es\", \"value\": \"El plugin GitHub Branch Source conecta con una URL de una API de GitHub especificada por el usuario (por ejemplo, GitHub Enterprise) como parte de la validaci\\u00f3n y finalizaci\\u00f3n del formulario (por ejemplo, para verificar que las Scan Credentials son correctas). La herramienta no comprueba correctamente los permisos, lo que permite que cualquier usuario con acceso Overall/Read a Jenkins se conecte a cualquier servidor web y env\\u00ede credenciales con un ID conocido, pudiendo capturarlos en consecuencia. Adem\\u00e1s, esta funcionalidad no necesita utilizar peticiones POST, permitiendo que se realice lo anterior sin tener acceso directo a Jenkins mediante ataques de tipo Cross-Site Request Forgery (CSRF).\"}]",
      "id": "CVE-2017-1000091",
      "lastModified": "2024-11-21T03:04:08.293",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 6.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2017-10-05T01:29:03.743",
      "references": "[{\"url\": \"https://jenkins.io/security/advisory/2017-07-10/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://jenkins.io/security/advisory/2017-07-10/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-352\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-1000091\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-10-05T01:29:03.743\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery.\"},{\"lang\":\"es\",\"value\":\"El plugin GitHub Branch Source conecta con una URL de una API de GitHub especificada por el usuario (por ejemplo, GitHub Enterprise) como parte de la validaci\u00f3n y finalizaci\u00f3n del formulario (por ejemplo, para verificar que las Scan Credentials son correctas). La herramienta no comprueba correctamente los permisos, lo que permite que cualquier usuario con acceso Overall/Read a Jenkins se conecte a cualquier servidor web y env\u00ede credenciales con un ID conocido, pudiendo capturarlos en consecuencia. Adem\u00e1s, esta funcionalidad no necesita utilizar peticiones POST, permitiendo que se realice lo anterior sin tener acceso directo a Jenkins mediante ataques de tipo Cross-Site Request Forgery (CSRF).\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-352\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"A511F648-0D88-4D1F-9EA1-851C066EA9BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-2:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"B6096BE5-B2AA-4DB5-AF31-D137C562CC7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-3:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"F7508088-0FCC-47B5-9562-60F929B45088\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:0.1:beta-4:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"D7A04FB1-3555-47BF-844A-75714A2B8A3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.0:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"6FF29165-A7E7-4338-A805-95F9D35C82EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.1:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"F5E10E7C-A96E-4D72-901A-A975C5C74933\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.2:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"2F4EC898-A3AD-4749-80D0-3D8B4E0A62A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.3:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"55DD8799-3D69-46C3-BAEF-3AE8253A48D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.4:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"3D30BBA5-114F-4222-9C1C-2452D47E1263\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.4:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"EABBCDC8-187C-4E98-A54F-E408BEA40D80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.5:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"5AF85B9C-00AC-4C01-8979-DF1EE693BA7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.6:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"E37CFC39-1337-42C1-A9E8-D3D1DC2885BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.7:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"31AE1E2F-64E9-4A1D-A9CB-F4C314B0AB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.8:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"403B2716-91C6-407A-8670-F848D34D0DEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.8.1:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"7CBFB929-A823-4681-A59D-0B8F4961D78F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.9:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"7E263793-F71F-4DCD-8C3D-5197D90F1C3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:1.10:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"61E15CCA-CCCB-4FEB-AED2-D412A69FEEED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.0:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"F4C6C0E5-20E9-4864-A6C1-53656F2852DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"2418A083-456F-457B-A77E-4D1C824E36D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-2:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"26CDE908-A6A1-4AB1-98C0-0C0E4A5980E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"AD5E5DF9-9C36-4694-8BF9-BD0414AA94B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"0DC703A2-C0AD-404B-B396-6584B585F9DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-2:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"1EB3064E-F4A0-47CF-9AC1-5718B01429BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-3:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"BC77DA15-8BCE-4FB2-8167-ADFA9A3F2198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-4:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"E2B6D674-9F05-4294-B84D-0181460DDB07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-5:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"42B72E35-5768-4BE1-A758-D2C7D8251C52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-6:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"D357735D-58BB-42C8-A8DA-0F3970BC4A11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.2:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"5F904453-6C74-43DE-A21F-E0F3C060EA52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.3:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"64374558-36DA-4841-8B20-2DD3188BD1F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.4:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"32C595AA-EE76-4446-BD6B-576ED2EDE5AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.4:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"ECDB4CDE-7547-49E9-9DF7-F3DAEDB0FF72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.5:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"016AC1F5-FC7E-4D94-B13B-B375E3483F9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.6:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"3A3A960B-EA82-4EEC-A6B8-02D1246534CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.0.7:*:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"C0782CF8-414A-4061-AAEC-20166C658A91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"BF2EF3DA-DBBE-458E-ACFC-2A330A3915A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-2:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"1B7FD58E-9959-4C40-9846-57ED0CA9A36E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-3:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"299AE4BC-BD79-4629-9C47-6B517482FBFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-4:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"E4F9BF9F-197C-4027-81D5-8E9A7F92ED79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:github_branch_source:2.2.0:beta-1:*:*:*:jenkins:*:*\",\"matchCriteriaId\":\"69C82FCF-CEF6-4CE7-868F-C8E2F181A034\"}]}]}],\"references\":[{\"url\":\"https://jenkins.io/security/advisory/2017-07-10/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://jenkins.io/security/advisory/2017-07-10/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

GSD-2017-1000091

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2017-1000091

Aliases

CVE-2017-1000091

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-1000091",
    "description": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery.",
    "id": "GSD-2017-1000091"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-1000091"
      ],
      "details": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery.",
      "id": "GSD-2017-1000091",
      "modified": "2023-12-13T01:21:02.363752Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "DATE_ASSIGNED": "2017-08-22T17:29:33.311579",
        "ID": "CVE-2017-1000091",
        "REQUESTER": "ml@beckweb.net",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://jenkins.io/security/advisory/2017-07-10/",
            "refsource": "CONFIRM",
            "url": "https://jenkins.io/security/advisory/2017-07-10/"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[0.1],[1.0,1.8.1],[1.9,1.10],[2.0.0,2.0.7],[2.2.0]",
          "affected_versions": "Version 0.1, all versions starting from 1.0 up to 1.8.1, all versions starting from 1.9 up to 1.10, all versions starting from 2.0.0 up to 2.0.7, version 2.2.0",
          "cvss_v2": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
          "cwe_ids": [
            "CWE-1035",
            "CWE-352",
            "CWE-937"
          ],
          "date": "2017-10-17",
          "description": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL as part of form validation and completion. This functionality improperly checked permissions, allowing any user with `Overall/Read` access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery.",
          "fixed_versions": [
            "2.2.5"
          ],
          "identifier": "CVE-2017-1000091",
          "identifiers": [
            "CVE-2017-1000091"
          ],
          "not_impacted": "All versions before 0.1, all versions after 0.1 before 1.0, all versions after 1.8.1 before 1.9, all versions after 1.10 before 2.0.0, all versions after 2.0.7 before 2.2.0, all versions after 2.2.0",
          "package_slug": "maven/org.jenkins-ci.plugins/github-branch-source",
          "pubdate": "2017-10-05",
          "solution": "Upgrade to version 2.2.5 or above.",
          "title": "Cross-Site Request Forgery (CSRF)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2017-1000091",
            "https://jenkins.io/security/advisory/2017-07-10/"
          ],
          "uuid": "ae0d28e8-e282-45e2-9064-57f5f26037da"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.1:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.2:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.3:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.4:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-3:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.0:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.4:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.6:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-5:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.2:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.4:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-3:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.8:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.8.1:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.9:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.10:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.4:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.5:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.6:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.7:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-2:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-3:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-4:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:beta-1:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-2:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-4:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.5:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:1.7:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-2:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-6:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.0.3:*:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-2:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-4:*:*:*:jenkins:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2017-1000091"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-352"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://jenkins.io/security/advisory/2017-07-10/",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://jenkins.io/security/advisory/2017-07-10/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 3.4
        }
      },
      "lastModifiedDate": "2017-10-17T17:12Z",
      "publishedDate": "2017-10-05T01:29Z"
    }
  }
}

FKIE_CVE-2017-1000091

Vulnerability from fkie_nvd - Published: 2017-10-05 01:29 - Updated: 2025-04-20 01:37

Severity ?

6.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

References

	URL	Tags
	cve@mitre.org	https://jenkins.io/security/advisory/2017-07-10/	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://jenkins.io/security/advisory/2017-07-10/	Vendor Advisory

Impacted products

Vendor	Product	Version
jenkins	github_branch_source	0.1
jenkins	github_branch_source	0.1
jenkins	github_branch_source	0.1
jenkins	github_branch_source	0.1
jenkins	github_branch_source	1.0
jenkins	github_branch_source	1.1
jenkins	github_branch_source	1.2
jenkins	github_branch_source	1.3
jenkins	github_branch_source	1.4
jenkins	github_branch_source	1.4
jenkins	github_branch_source	1.5
jenkins	github_branch_source	1.6
jenkins	github_branch_source	1.7
jenkins	github_branch_source	1.8
jenkins	github_branch_source	1.8.1
jenkins	github_branch_source	1.9
jenkins	github_branch_source	1.10
jenkins	github_branch_source	2.0.0
jenkins	github_branch_source	2.0.0
jenkins	github_branch_source	2.0.0
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.1
jenkins	github_branch_source	2.0.2
jenkins	github_branch_source	2.0.3
jenkins	github_branch_source	2.0.4
jenkins	github_branch_source	2.0.4
jenkins	github_branch_source	2.0.5
jenkins	github_branch_source	2.0.6
jenkins	github_branch_source	2.0.7
jenkins	github_branch_source	2.2.0
jenkins	github_branch_source	2.2.0
jenkins	github_branch_source	2.2.0
jenkins	github_branch_source	2.2.0
jenkins	github_branch_source	2.2.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "A511F648-0D88-4D1F-9EA1-851C066EA9BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-2:*:*:*:jenkins:*:*",
              "matchCriteriaId": "B6096BE5-B2AA-4DB5-AF31-D137C562CC7A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-3:*:*:*:jenkins:*:*",
              "matchCriteriaId": "F7508088-0FCC-47B5-9562-60F929B45088",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:0.1:beta-4:*:*:*:jenkins:*:*",
              "matchCriteriaId": "D7A04FB1-3555-47BF-844A-75714A2B8A3C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.0:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "6FF29165-A7E7-4338-A805-95F9D35C82EA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.1:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "F5E10E7C-A96E-4D72-901A-A975C5C74933",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.2:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "2F4EC898-A3AD-4749-80D0-3D8B4E0A62A9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.3:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "55DD8799-3D69-46C3-BAEF-3AE8253A48D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.4:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "3D30BBA5-114F-4222-9C1C-2452D47E1263",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.4:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "EABBCDC8-187C-4E98-A54F-E408BEA40D80",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.5:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "5AF85B9C-00AC-4C01-8979-DF1EE693BA7F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.6:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "E37CFC39-1337-42C1-A9E8-D3D1DC2885BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.7:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "31AE1E2F-64E9-4A1D-A9CB-F4C314B0AB09",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.8:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "403B2716-91C6-407A-8670-F848D34D0DEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.8.1:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "7CBFB929-A823-4681-A59D-0B8F4961D78F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.9:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "7E263793-F71F-4DCD-8C3D-5197D90F1C3D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:1.10:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "61E15CCA-CCCB-4FEB-AED2-D412A69FEEED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "F4C6C0E5-20E9-4864-A6C1-53656F2852DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "2418A083-456F-457B-A77E-4D1C824E36D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.0:beta-2:*:*:*:jenkins:*:*",
              "matchCriteriaId": "26CDE908-A6A1-4AB1-98C0-0C0E4A5980E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "AD5E5DF9-9C36-4694-8BF9-BD0414AA94B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "0DC703A2-C0AD-404B-B396-6584B585F9DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-2:*:*:*:jenkins:*:*",
              "matchCriteriaId": "1EB3064E-F4A0-47CF-9AC1-5718B01429BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-3:*:*:*:jenkins:*:*",
              "matchCriteriaId": "BC77DA15-8BCE-4FB2-8167-ADFA9A3F2198",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-4:*:*:*:jenkins:*:*",
              "matchCriteriaId": "E2B6D674-9F05-4294-B84D-0181460DDB07",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-5:*:*:*:jenkins:*:*",
              "matchCriteriaId": "42B72E35-5768-4BE1-A758-D2C7D8251C52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.1:beta-6:*:*:*:jenkins:*:*",
              "matchCriteriaId": "D357735D-58BB-42C8-A8DA-0F3970BC4A11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.2:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "5F904453-6C74-43DE-A21F-E0F3C060EA52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.3:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "64374558-36DA-4841-8B20-2DD3188BD1F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.4:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "32C595AA-EE76-4446-BD6B-576ED2EDE5AD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.4:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "ECDB4CDE-7547-49E9-9DF7-F3DAEDB0FF72",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.5:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "016AC1F5-FC7E-4D94-B13B-B375E3483F9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.6:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "3A3A960B-EA82-4EEC-A6B8-02D1246534CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.0.7:*:*:*:*:jenkins:*:*",
              "matchCriteriaId": "C0782CF8-414A-4061-AAEC-20166C658A91",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "BF2EF3DA-DBBE-458E-ACFC-2A330A3915A3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-2:*:*:*:jenkins:*:*",
              "matchCriteriaId": "1B7FD58E-9959-4C40-9846-57ED0CA9A36E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-3:*:*:*:jenkins:*:*",
              "matchCriteriaId": "299AE4BC-BD79-4629-9C47-6B517482FBFE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:alpha-4:*:*:*:jenkins:*:*",
              "matchCriteriaId": "E4F9BF9F-197C-4027-81D5-8E9A7F92ED79",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:github_branch_source:2.2.0:beta-1:*:*:*:jenkins:*:*",
              "matchCriteriaId": "69C82FCF-CEF6-4CE7-868F-C8E2F181A034",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery."
    },
    {
      "lang": "es",
      "value": "El plugin GitHub Branch Source conecta con una URL de una API de GitHub especificada por el usuario (por ejemplo, GitHub Enterprise) como parte de la validaci\u00f3n y finalizaci\u00f3n del formulario (por ejemplo, para verificar que las Scan Credentials son correctas). La herramienta no comprueba correctamente los permisos, lo que permite que cualquier usuario con acceso Overall/Read a Jenkins se conecte a cualquier servidor web y env\u00ede credenciales con un ID conocido, pudiendo capturarlos en consecuencia. Adem\u00e1s, esta funcionalidad no necesita utilizar peticiones POST, permitiendo que se realice lo anterior sin tener acceso directo a Jenkins mediante ataques de tipo Cross-Site Request Forgery (CSRF)."
    }
  ],
  "id": "CVE-2017-1000091",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 6.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-10-05T01:29:03.743",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://jenkins.io/security/advisory/2017-07-10/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://jenkins.io/security/advisory/2017-07-10/"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-352"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2017-32551

Vulnerability from cnvd - Published: 2017-11-03

Title

CloudBees GitHub Branch Source插件跨站伪造漏洞

Description

CloudBees GitHub Branch Source plugin是美国CloudBees公司的Jenkins（基于Java开发的持续集成工具）中的一个GitHub分支插件。 CloudBees GitHub Branch Source插件中存在跨站请求伪造漏洞，该漏洞源于程序未能充分的验证权限。远程攻击者可利用该漏洞捕获证书。

Severity

中

Patch Name

CloudBees GitHub Branch Source插件跨站伪造漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://jenkins.io/security/advisory/2017-07-10/

Reference

https://jenkins.io/security/advisory/2017-07-10/

Impacted products

Name
['CloudBees GitHub Branch Source 2.0.7', 'CloudBees GitHub Branch Source 2.2.0-beta-1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-1000091"
    }
  },
  "description": "CloudBees GitHub Branch Source plugin\u662f\u7f8e\u56fdCloudBees\u516c\u53f8\u7684Jenkins\uff08\u57fa\u4e8eJava\u5f00\u53d1\u7684\u6301\u7eed\u96c6\u6210\u5de5\u5177\uff09\u4e2d\u7684\u4e00\u4e2aGitHub\u5206\u652f\u63d2\u4ef6\u3002\r\n\r\nCloudBees GitHub Branch Source\u63d2\u4ef6\u4e2d\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u7684\u9a8c\u8bc1\u6743\u9650\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6355\u83b7\u8bc1\u4e66\u3002",
  "discovererName": "Jesse Glick, CloudBees, Inc.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://jenkins.io/security/advisory/2017-07-10/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-32551",
  "openTime": "2017-11-03",
  "patchDescription": "CloudBees GitHub Branch Source plugin\u662f\u7f8e\u56fdCloudBees\u516c\u53f8\u7684Jenkins\uff08\u57fa\u4e8eJava\u5f00\u53d1\u7684\u6301\u7eed\u96c6\u6210\u5de5\u5177\uff09\u4e2d\u7684\u4e00\u4e2aGitHub\u5206\u652f\u63d2\u4ef6\u3002\r\n\r\nCloudBees GitHub Branch Source\u63d2\u4ef6\u4e2d\u5b58\u5728\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u7684\u9a8c\u8bc1\u6743\u9650\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6355\u83b7\u8bc1\u4e66\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "CloudBees GitHub Branch Source\u63d2\u4ef6\u8de8\u7ad9\u4f2a\u9020\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "CloudBees GitHub Branch Source 2.0.7",
      "CloudBees GitHub Branch Source 2.2.0-beta-1"
    ]
  },
  "referenceLink": "https://jenkins.io/security/advisory/2017-07-10/",
  "serverity": "\u4e2d",
  "submitTime": "2017-10-31",
  "title": "CloudBees GitHub Branch Source\u63d2\u4ef6\u8de8\u7ad9\u4f2a\u9020\u6f0f\u6d1e"
}

GHSA-W66R-F5GG-GQWM

Vulnerability from github – Published: 2022-05-17 00:33 – Updated: 2022-12-12 21:31

Summary

Jenkins GitHub Branch Source Plugin vulnerable to Cross-Site Request Forgery

Details

GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery. An enumeration of credentials IDs in this plugin now requires the permission to have Extended Read permission (when that permission is enabled; otherwise Configure permission) to the job in whose context credentials are being accessed. If no job context exists, Overall/Administer permission is required.

Severity ?

6.3 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.jenkins-ci.plugins:github-branch-source"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.2.0-alpha-1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2017-1000091"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-352"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-12-12T21:31:46Z",
    "nvd_published_at": "2017-10-05T01:29:00Z",
    "severity": "MODERATE"
  },
  "details": "GitHub Branch Source Plugin connects to a user-specified GitHub API URL (e.g. GitHub Enterprise) as part of form validation and completion (e.g. to verify Scan Credentials are correct). This functionality improperly checked permissions, allowing any user with Overall/Read access to Jenkins to connect to any web server and send credentials with a known ID, thereby possibly capturing them. Additionally, this functionality did not require POST requests be used, thereby allowing the above to be performed without direct access to Jenkins via Cross-Site Request Forgery. An enumeration of credentials IDs in this plugin now requires the permission to have Extended Read permission (when that permission is enabled; otherwise Configure permission) to the job in whose context credentials are being accessed. If no job context exists, Overall/Administer permission is required.",
  "id": "GHSA-w66r-f5gg-gqwm",
  "modified": "2022-12-12T21:31:46Z",
  "published": "2022-05-17T00:33:21Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000091"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/jenkinsci/github-branch-source-plugin"
    },
    {
      "type": "WEB",
      "url": "https://jenkins.io/security/advisory/2017-07-10"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Jenkins GitHub Branch Source Plugin vulnerable to Cross-Site Request Forgery"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2017-1000091 (GCVE-0-2017-1000091)

GSD-2017-1000091

FKIE_CVE-2017-1000091

CNVD-2017-32551

GHSA-W66R-F5GG-GQWM

Tags

Sightings

Nomenclature