Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2022-43401
Vulnerability from cvelistv5
Published
2022-10-19 00:00
Modified
2024-08-03 13:32
Severity ?
EPSS score ?
Summary
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| jenkinsci-cert@googlegroups.com | http://www.openwall.com/lists/oss-security/2022/10/19/3 | Mailing List, Third Party Advisory | |
| jenkinsci-cert@googlegroups.com | https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2022/10/19/3 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Jenkins project | Jenkins Script Security Plugin |
Version: unspecified < |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T13:32:57.390Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, { name: "[oss-security] 20221019 Multiple vulnerabilities in Jenkins plugins", tags: [ "mailing-list", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Jenkins Script Security Plugin", vendor: "Jenkins project", versions: [ { status: "unaffected", version: "1175.1177.vda_175b_77d144", }, { lessThanOrEqual: "1183.v774b_0b_0a_a_451", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", }, ], providerMetadata: { dateUpdated: "2023-10-24T14:25:26.784Z", orgId: "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", shortName: "jenkins", }, references: [ { url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, { name: "[oss-security] 20221019 Multiple vulnerabilities in Jenkins plugins", tags: [ "mailing-list", ], url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, ], }, }, cveMetadata: { assignerOrgId: "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", assignerShortName: "jenkins", cveId: "CVE-2022-43401", datePublished: "2022-10-19T00:00:00", dateReserved: "2022-10-18T00:00:00", dateUpdated: "2024-08-03T13:32:57.390Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*\", \"versionEndIncluding\": \"1183.v774b_0b_0a_a_451\", \"matchCriteriaId\": \"62EC83DC-AAE2-44E2-A364-6683544267D8\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad de omisi\\u00f3n del sandbox que involucra varios moldes llevados a cabo impl\\u00edcitamente por el tiempo de ejecuci\\u00f3n del lenguaje Groovy en Jenkins Script Security Plugin versiones 1183.v774b_0b_0a_a_451 y anteriores, permite a atacantes con permiso para definir y ejecutar scripts en sandbox, incluyendo Pipelines, omitir la protecci\\u00f3n del sandbox y ejecutar c\\u00f3digo arbitrario en el contexto de la JVM del controlador de Jenkins\"}]", id: "CVE-2022-43401", lastModified: "2024-11-21T07:26:24.483", metrics: "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 9.9, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.1, \"impactScore\": 6.0}]}", published: "2022-10-19T16:15:10.127", references: "[{\"url\": \"http://www.openwall.com/lists/oss-security/2022/10/19/3\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2022/10/19/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]", sourceIdentifier: "jenkinsci-cert@googlegroups.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2022-43401\",\"sourceIdentifier\":\"jenkinsci-cert@googlegroups.com\",\"published\":\"2022-10-19T16:15:10.127\",\"lastModified\":\"2024-11-21T07:26:24.483\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de omisión del sandbox que involucra varios moldes llevados a cabo implícitamente por el tiempo de ejecución del lenguaje Groovy en Jenkins Script Security Plugin versiones 1183.v774b_0b_0a_a_451 y anteriores, permite a atacantes con permiso para definir y ejecutar scripts en sandbox, incluyendo Pipelines, omitir la protección del sandbox y ejecutar código arbitrario en el contexto de la JVM del controlador de Jenkins\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":9.9,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.1,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*\",\"versionEndIncluding\":\"1183.v774b_0b_0a_a_451\",\"matchCriteriaId\":\"62EC83DC-AAE2-44E2-A364-6683544267D8\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2022/10/19/3\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/10/19/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}", }, }
gsd-2022-43401
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.
Aliases
Aliases
{ GSD: { alias: "CVE-2022-43401", id: "GSD-2022-43401", references: [ "https://access.redhat.com/errata/RHSA-2023:0560", "https://access.redhat.com/errata/RHSA-2023:0777", "https://access.redhat.com/errata/RHSA-2023:1064", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2022-43401", ], details: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", id: "GSD-2022-43401", modified: "2023-12-13T01:19:31.500944Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "jenkinsci-cert@googlegroups.com", ID: "CVE-2022-43401", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Jenkins Script Security Plugin", version: { version_data: [ { version_value: "not down converted", x_cve_json_5_version_data: { versions: [ { status: "unaffected", version: "1175.1177.vda_175b_77d144", }, { lessThanOrEqual: "1183.v774b_0b_0a_a_451", status: "affected", version: "unspecified", versionType: "custom", }, ], }, }, ], }, }, ], }, vendor_name: "Jenkins project", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", refsource: "MISC", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, { name: "http://www.openwall.com/lists/oss-security/2022/10/19/3", refsource: "MISC", url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "(,2802.v5ea]", affected_versions: "All versions up to 2802.v5ea", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-693", "CWE-78", "CWE-937", ], date: "2022-12-16", description: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", fixed_versions: [ "2803.v1a_f77ffcc773", ], identifier: "CVE-2022-43401", identifiers: [ "GHSA-7vr5-72w7-q6jc", "CVE-2022-43401", ], not_impacted: "All versions after 2802.v5ea", package_slug: "maven/org.jenkins-ci.plugins.workflow/workflow-cps", pubdate: "2022-10-19", solution: "Upgrade to version 2803.v1a_f77ffcc773 or above.", title: "Protection Mechanism Failure", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", "http://www.openwall.com/lists/oss-security/2022/10/19/3", "https://github.com/advisories/GHSA-7vr5-72w7-q6jc", ], uuid: "6adcc861-9df7-488f-af71-b01be1b8f1e2", }, { affected_range: "(,1183.v774b_0b_0a_a_451]", affected_versions: "All versions up to 1183.v774b_0b_0a_a_451", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-693", "CWE-937", ], date: "2022-10-31", description: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", fixed_versions: [], identifier: "CVE-2022-43401", identifiers: [ "CVE-2022-43401", ], not_impacted: "", package_slug: "maven/org.jenkins-ci.plugins/script-security", pubdate: "2022-10-19", solution: "Unfortunately, there is no solution available yet.", title: "Protection Mechanism Failure", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", "http://www.openwall.com/lists/oss-security/2022/10/19/3", ], uuid: "2f583834-a4cf-4a2f-b317-bc7f12856988", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*", cpe_name: [], versionEndIncluding: "1183.v774b_0b_0a_a_451", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "jenkinsci-cert@googlegroups.com", ID: "CVE-2022-43401", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], }, ], }, references: { reference_data: [ { name: "[oss-security] 20221019 Multiple vulnerabilities in Jenkins plugins", refsource: "MLIST", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, { name: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", refsource: "MISC", tags: [ "Vendor Advisory", ], url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.1, impactScore: 6, }, }, lastModifiedDate: "2023-11-22T21:16Z", publishedDate: "2022-10-19T16:15Z", }, }, }
RHSA-2023:0777
Vulnerability from csaf_redhat
Published
2023-02-23 00:01
Modified
2025-03-19 19:41
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.9.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2023:0778
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)
* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.9.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:0778\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)\n\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)\n\n* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)\n\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)\n\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)\n\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0777", url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", url: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0777.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update", tracking: { current_release_date: "2025-03-19T19:41:32+00:00", generator: { date: "2025-03-19T19:41:32+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:0777", initial_release_date: "2023-02-23T00:01:27+00:00", revision_history: [ { date: "2023-02-23T00:01:27+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-23T00:01:27+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-19T19:41:32+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.9", product: { name: "Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.9::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.src", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.src", product_id: "jenkins-0:2.361.1.1675668150-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_id: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-2048", cwe: { id: "CWE-410", name: "Insufficient Resource Pool", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116952", }, ], notes: [ { category: "description", text: "A flaw was found in the Eclipse Jetty http2-server package. This flaw allows an attacker to cause a denial of service in the server via HTTP/2 requests.", title: "Vulnerability description", }, { category: "summary", text: "http2-server: Invalid HTTP/2 requests cause DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-2048", }, { category: "external", summary: "RHBZ#2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-2048", url: "https://www.cve.org/CVERecord?id=CVE-2022-2048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", }, { category: "external", summary: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", url: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", }, ], release_date: "2022-07-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "http2-server: Invalid HTTP/2 requests cause DoS", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-34174", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119653", }, ], notes: [ { category: "description", text: "In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username and wrong password, when using the Jenkins user database security realm.", title: "Vulnerability description", }, { category: "summary", text: "jenkins: Observable timing discrepancy allows determining username validity", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-34174", }, { category: "external", summary: "RHBZ#2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-34174", url: "https://www.cve.org/CVERecord?id=CVE-2022-34174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", url: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", }, ], release_date: "2022-06-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins: Observable timing discrepancy allows determining username validity", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
rhsa-2023_0560
Vulnerability from csaf_redhat
Published
2023-02-08 18:41
Modified
2024-12-16 16:06
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:
Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in
Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in
Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for
OAuth 2.0 for Native Apps can lead to improper authorization
(CVE-2020-7692)
* snakeyaml: Denial of Service due to missing nested depth limitation for
collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be
bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security
Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin
(CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability
in Pipeline Utility Steps Plugin (CVE-2022-45381)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin
(CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by
Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin
(CVE-2022-30954)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in
org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub
Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be
bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:
Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43401)\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:\nGroovy Plugin (CVE-2022-43402)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43403)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43404)\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in\nPipeline: Groovy Libraries Plugin (CVE-2022-43405)\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in\nPipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n* google-oauth-client: missing PKCE support in accordance with the RFC for\nOAuth 2.0 for Native Apps can lead to improper authorization\n(CVE-2020-7692)\n* snakeyaml: Denial of Service due to missing nested depth limitation for\ncollections (CVE-2022-25857)\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be\nbypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n* jenkins-plugin/script-security: Whole-script approval in Script Security\nPlugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin\n(CVE-2022-45380)\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability\nin Pipeline Utility Steps Plugin (CVE-2022-45381)\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin\n(CVE-2022-30946)\n* Jenkins plugin: User-scoped credentials exposed to other users by\nPipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin\n(CVE-2022-30954)\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in\norg.jenkins-ci.plugins:git (CVE-2022-36882)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36883)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36884)\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub\nPlugin (CVE-2022-36885)\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be\nbypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:\nSupporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0560", url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0560.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update", tracking: { current_release_date: "2024-12-16T16:06:28+00:00", generator: { date: "2024-12-16T16:06:28+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2023:0560", initial_release_date: "2023-02-08T18:41:32+00:00", revision_history: [ { date: "2023-02-08T18:41:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-08T18:41:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-16T16:06:28+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el7", }, }, }, { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=src", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
RHSA-2023:1064
Vulnerability from csaf_redhat
Published
2023-03-06 09:01
Modified
2025-03-14 18:54
Summary
Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update
Notes
Topic
An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)
* jackson-databind: use of deeply nested arrays (CVE-2022-42004)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)\n\n* jackson-databind: use of deeply nested arrays (CVE-2022-42004)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:1064", url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1064.json", }, ], title: "Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update", tracking: { current_release_date: "2025-03-14T18:54:06+00:00", generator: { date: "2025-03-14T18:54:06+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:1064", initial_release_date: "2023-03-06T09:01:46+00:00", revision_history: [ { date: "2023-03-06T09:01:46+00:00", number: "1", summary: "Initial version", }, { date: "2023-03-06T09:01:46+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-14T18:54:06+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.12", product: { name: "OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.12::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.src", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.src", product_id: "jenkins-0:2.361.4.1675702346-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_id: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, ], }, vulnerabilities: [ { cve: "CVE-2022-29047", cwe: { id: "CWE-288", name: "Authentication Bypass Using an Alternate Path or Channel", }, discovery_date: "2022-04-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2074855", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins Pipeline: Shared Groovy Libraries plugin. The Jenkins Pipeline: Shared Groovy Libraries plugin allows attackers to submit pull requests. However, the attacker cannot commit directly to the configured Source Control Management (SCM) to effectively change the Pipeline behavior by changing the definition of a dynamically retrieved library in their pull request, even with the Pipeline configured not to trust them.", title: "Vulnerability description", }, { category: "summary", text: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29047", }, { category: "external", summary: "RHBZ#2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29047", url: "https://www.cve.org/CVERecord?id=CVE-2022-29047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", url: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", }, ], release_date: "2022-04-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-42003", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135244", }, ], notes: [ { category: "description", text: "A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42003", }, { category: "external", summary: "RHBZ#2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42003", url: "https://www.cve.org/CVERecord?id=CVE-2022-42003", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", }, { cve: "CVE-2022-42004", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135247", }, ], notes: [ { category: "description", text: "A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer._deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices for deserialization.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: use of deeply nested arrays", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42004", }, { category: "external", summary: "RHBZ#2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42004", url: "https://www.cve.org/CVERecord?id=CVE-2022-42004", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: use of deeply nested arrays", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-43410", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136369", }, ], notes: [ { category: "description", text: "An information leak was found in a Jenkins plugin. This issue could allow an unauthenticated remote attacker to issue GET requests. The greatest impact is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43410", }, { category: "external", summary: "RHBZ#2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43410", url: "https://www.cve.org/CVERecord?id=CVE-2022-43410", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, ], }
RHSA-2023:3198
Vulnerability from csaf_redhat
Published
2023-05-17 17:53
Modified
2025-03-14 21:20
Summary
Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
Notes
Topic
An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* maven: Block repositories using http by default (CVE-2021-26291)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)
* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)
* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)
* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* maven: Block repositories using http by default (CVE-2021-26291)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)\n\n* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)\n\n* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)\n\n* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3198", url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", url: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", }, { category: "external", summary: "1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3198.json", }, ], title: "Red Hat Security Advisory: jenkins and jenkins-2-plugins security update", tracking: { current_release_date: "2025-03-14T21:20:21+00:00", generator: { date: "2025-03-14T21:20:21+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:3198", initial_release_date: "2023-05-17T17:53:04+00:00", revision_history: [ { date: "2023-05-17T17:53:04+00:00", number: "1", summary: "Initial version", }, { date: "2023-05-17T17:53:04+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-14T21:20:21+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product: { name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.11::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.src", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.src", product_id: "jenkins-0:2.387.1.1683009763-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_id: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, ], }, vulnerabilities: [ { cve: "CVE-2021-26291", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-04-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1955739", }, ], notes: [ { category: "description", text: "A flaw was found in maven. Repositories that are defined in a dependency’s Project Object Model (pom), which may be unknown to users, are used by default resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository. The highest threat from this vulnerability is to data confidentiality and integrity.", title: "Vulnerability description", }, { category: "summary", text: "maven: Block repositories using http by default", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-26291", }, { category: "external", summary: "RHBZ#1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-26291", url: "https://www.cve.org/CVERecord?id=CVE-2021-26291", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", }, { category: "external", summary: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", url: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", }, ], release_date: "2021-04-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "To avoid possible man-in-the-middle related attacks with this flaw, ensure any linked repositories in maven POMs use https and not http.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "maven: Block repositories using http by default", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-29599", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-03-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2066479", }, ], notes: [ { category: "description", text: "A flaw was found in the maven-shared-utils package. This issue allows a Command Injection due to improper escaping, allowing a shell injection attack.", title: "Vulnerability description", }, { category: "summary", text: "maven-shared-utils: Command injection via Commandline class", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Satellite ships Candlepin component, which uses the Tomcatjss module from the RHEL AppStream repository. In turn, Tomcatjss relies on Maven, which itself depends on affected Apache Maven Shared Utils. Due to the fact that Satellite does not directly use Apache Maven Shared Utils, or expose it in its code, it is considered not affected by the flaw. Satellite customers can resolve the security warning by updating to the fixed Apache Maven Shared Utils through the updated Maven module, which is available in the RHEL 8 AppStream repository. It's worth noting that this solution applies solely to RHEL 8, which supports modules exclusively, and it is not applicable to earlier versions including RHEL 7.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29599", }, { category: "external", summary: "RHBZ#2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29599", url: "https://www.cve.org/CVERecord?id=CVE-2022-29599", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", }, ], release_date: "2020-05-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "maven-shared-utils: Command injection via Commandline class", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2023-24422", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2023-01-25T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2164278", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. In affected versions of the script-security plugin, property assignments performed implicitly by the Groovy language runtime when invoking map constructors were not intercepted by the sandbox. This vulnerability allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24422", }, { category: "external", summary: "RHBZ#2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24422", url: "https://www.cve.org/CVERecord?id=CVE-2023-24422", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", url: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", }, ], release_date: "2023-01-24T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", }, { cve: "CVE-2023-25761", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170039", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins JUnit plugin. The affected versions of the JUnit Plugin do not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability. This may allow an attacker to control test case class names in the JUnit resources processed by the plugin.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25761", }, { category: "external", summary: "RHBZ#2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25761", url: "https://www.cve.org/CVERecord?id=CVE-2023-25761", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2023-25762", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170041", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting (XSS) vulnerability that may allow attackers to control job names.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25762", }, { category: "external", summary: "RHBZ#2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25762", url: "https://www.cve.org/CVERecord?id=CVE-2023-25762", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", }, { cve: "CVE-2023-27903", cwe: { id: "CWE-266", name: "Incorrect Privilege Assignment", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177632", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. When triggering a build from the Jenkins CLI, Jenkins creates a temporary file on the controller if a file parameter is provided through the CLI’s standard input. Affected versions of Jenkins create this temporary file in the default temporary directory with the default permissions for newly created files. If these permissions are overly permissive, they may allow attackers with access to the Jenkins controller file system to read and write the file before it is used in the build.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Temporary file parameter created with insecure permissions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27903", }, { category: "external", summary: "RHBZ#2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27903", url: "https://www.cve.org/CVERecord?id=CVE-2023-27903", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Temporary file parameter created with insecure permissions", }, { cve: "CVE-2023-27904", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177634", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. The affected version of Jenkins prints an error stack trace on agent-related pages when agent connections are broken. This stack trace may contain information about Jenkins configuration that is otherwise inaccessible to attackers.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Information disclosure through error stack traces related to agents", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27904", }, { category: "external", summary: "RHBZ#2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27904", url: "https://www.cve.org/CVERecord?id=CVE-2023-27904", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Information disclosure through error stack traces related to agents", }, ], }
rhsa-2023_0777
Vulnerability from csaf_redhat
Published
2023-02-23 00:01
Modified
2024-12-17 23:01
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.9.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2023:0778
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)
* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.9.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:0778\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)\n\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)\n\n* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)\n\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)\n\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)\n\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0777", url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", url: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0777.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update", tracking: { current_release_date: "2024-12-17T23:01:39+00:00", generator: { date: "2024-12-17T23:01:39+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2023:0777", initial_release_date: "2023-02-23T00:01:27+00:00", revision_history: [ { date: "2023-02-23T00:01:27+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-23T00:01:27+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-17T23:01:39+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.9", product: { name: "Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.9::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.src", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.src", product_id: "jenkins-0:2.361.1.1675668150-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_id: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-2048", cwe: { id: "CWE-410", name: "Insufficient Resource Pool", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116952", }, ], notes: [ { category: "description", text: "A flaw was found in the Eclipse Jetty http2-server package. This flaw allows an attacker to cause a denial of service in the server via HTTP/2 requests.", title: "Vulnerability description", }, { category: "summary", text: "http2-server: Invalid HTTP/2 requests cause DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-2048", }, { category: "external", summary: "RHBZ#2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-2048", url: "https://www.cve.org/CVERecord?id=CVE-2022-2048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", }, { category: "external", summary: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", url: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", }, ], release_date: "2022-07-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "http2-server: Invalid HTTP/2 requests cause DoS", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-34174", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119653", }, ], notes: [ { category: "description", text: "In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username and wrong password, when using the Jenkins user database security realm.", title: "Vulnerability description", }, { category: "summary", text: "jenkins: Observable timing discrepancy allows determining username validity", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-34174", }, { category: "external", summary: "RHBZ#2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-34174", url: "https://www.cve.org/CVERecord?id=CVE-2022-34174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", url: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", }, ], release_date: "2022-06-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins: Observable timing discrepancy allows determining username validity", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
rhsa-2023_1064
Vulnerability from csaf_redhat
Published
2023-03-06 09:01
Modified
2024-12-10 17:45
Summary
Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update
Notes
Topic
An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)
* jackson-databind: use of deeply nested arrays (CVE-2022-42004)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)\n\n* jackson-databind: use of deeply nested arrays (CVE-2022-42004)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:1064", url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1064.json", }, ], title: "Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update", tracking: { current_release_date: "2024-12-10T17:45:19+00:00", generator: { date: "2024-12-10T17:45:19+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2023:1064", initial_release_date: "2023-03-06T09:01:46+00:00", revision_history: [ { date: "2023-03-06T09:01:46+00:00", number: "1", summary: "Initial version", }, { date: "2023-03-06T09:01:46+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-10T17:45:19+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.12", product: { name: "OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.12::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.src", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.src", product_id: "jenkins-0:2.361.4.1675702346-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_id: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, ], }, vulnerabilities: [ { cve: "CVE-2022-29047", cwe: { id: "CWE-288", name: "Authentication Bypass Using an Alternate Path or Channel", }, discovery_date: "2022-04-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2074855", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins Pipeline: Shared Groovy Libraries plugin. The Jenkins Pipeline: Shared Groovy Libraries plugin allows attackers to submit pull requests. However, the attacker cannot commit directly to the configured Source Control Management (SCM) to effectively change the Pipeline behavior by changing the definition of a dynamically retrieved library in their pull request, even with the Pipeline configured not to trust them.", title: "Vulnerability description", }, { category: "summary", text: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29047", }, { category: "external", summary: "RHBZ#2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29047", url: "https://www.cve.org/CVERecord?id=CVE-2022-29047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", url: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", }, ], release_date: "2022-04-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-42003", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135244", }, ], notes: [ { category: "description", text: "A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42003", }, { category: "external", summary: "RHBZ#2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42003", url: "https://www.cve.org/CVERecord?id=CVE-2022-42003", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", }, { cve: "CVE-2022-42004", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135247", }, ], notes: [ { category: "description", text: "A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer._deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices for deserialization.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: use of deeply nested arrays", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42004", }, { category: "external", summary: "RHBZ#2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42004", url: "https://www.cve.org/CVERecord?id=CVE-2022-42004", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: use of deeply nested arrays", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-43410", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136369", }, ], notes: [ { category: "description", text: "An information leak was found in a Jenkins plugin. This issue could allow an unauthenticated remote attacker to issue GET requests. The greatest impact is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43410", }, { category: "external", summary: "RHBZ#2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43410", url: "https://www.cve.org/CVERecord?id=CVE-2022-43410", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, ], }
rhsa-2023_3198
Vulnerability from csaf_redhat
Published
2023-05-17 17:53
Modified
2024-12-17 23:03
Summary
Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
Notes
Topic
An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* maven: Block repositories using http by default (CVE-2021-26291)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)
* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)
* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)
* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* maven: Block repositories using http by default (CVE-2021-26291)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)\n\n* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)\n\n* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)\n\n* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3198", url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", url: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", }, { category: "external", summary: "1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3198.json", }, ], title: "Red Hat Security Advisory: jenkins and jenkins-2-plugins security update", tracking: { current_release_date: "2024-12-17T23:03:11+00:00", generator: { date: "2024-12-17T23:03:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2023:3198", initial_release_date: "2023-05-17T17:53:04+00:00", revision_history: [ { date: "2023-05-17T17:53:04+00:00", number: "1", summary: "Initial version", }, { date: "2023-05-17T17:53:04+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-17T23:03:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product: { name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.11::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.src", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.src", product_id: "jenkins-0:2.387.1.1683009763-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_id: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, ], }, vulnerabilities: [ { cve: "CVE-2021-26291", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-04-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1955739", }, ], notes: [ { category: "description", text: "A flaw was found in maven. Repositories that are defined in a dependency’s Project Object Model (pom), which may be unknown to users, are used by default resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository. The highest threat from this vulnerability is to data confidentiality and integrity.", title: "Vulnerability description", }, { category: "summary", text: "maven: Block repositories using http by default", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-26291", }, { category: "external", summary: "RHBZ#1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-26291", url: "https://www.cve.org/CVERecord?id=CVE-2021-26291", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", }, { category: "external", summary: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", url: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", }, ], release_date: "2021-04-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "To avoid possible man-in-the-middle related attacks with this flaw, ensure any linked repositories in maven POMs use https and not http.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "maven: Block repositories using http by default", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-29599", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-03-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2066479", }, ], notes: [ { category: "description", text: "A flaw was found in the maven-shared-utils package. This issue allows a Command Injection due to improper escaping, allowing a shell injection attack.", title: "Vulnerability description", }, { category: "summary", text: "maven-shared-utils: Command injection via Commandline class", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Satellite ships Candlepin component, which uses the Tomcatjss module from the RHEL AppStream repository. In turn, Tomcatjss relies on Maven, which itself depends on affected Apache Maven Shared Utils. Due to the fact that Satellite does not directly use Apache Maven Shared Utils, or expose it in its code, it is considered not affected by the flaw. Satellite customers can resolve the security warning by updating to the fixed Apache Maven Shared Utils through the updated Maven module, which is available in the RHEL 8 AppStream repository. It's worth noting that this solution applies solely to RHEL 8, which supports modules exclusively, and it is not applicable to earlier versions including RHEL 7.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29599", }, { category: "external", summary: "RHBZ#2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29599", url: "https://www.cve.org/CVERecord?id=CVE-2022-29599", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", }, ], release_date: "2020-05-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "maven-shared-utils: Command injection via Commandline class", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2023-24422", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2023-01-25T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2164278", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. In affected versions of the script-security plugin, property assignments performed implicitly by the Groovy language runtime when invoking map constructors were not intercepted by the sandbox. This vulnerability allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24422", }, { category: "external", summary: "RHBZ#2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24422", url: "https://www.cve.org/CVERecord?id=CVE-2023-24422", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", url: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", }, ], release_date: "2023-01-24T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", }, { cve: "CVE-2023-25761", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170039", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins JUnit plugin. The affected versions of the JUnit Plugin do not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability. This may allow an attacker to control test case class names in the JUnit resources processed by the plugin.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25761", }, { category: "external", summary: "RHBZ#2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25761", url: "https://www.cve.org/CVERecord?id=CVE-2023-25761", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2023-25762", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170041", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting (XSS) vulnerability that may allow attackers to control job names.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25762", }, { category: "external", summary: "RHBZ#2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25762", url: "https://www.cve.org/CVERecord?id=CVE-2023-25762", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", }, { cve: "CVE-2023-27903", cwe: { id: "CWE-266", name: "Incorrect Privilege Assignment", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177632", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. When triggering a build from the Jenkins CLI, Jenkins creates a temporary file on the controller if a file parameter is provided through the CLI’s standard input. Affected versions of Jenkins create this temporary file in the default temporary directory with the default permissions for newly created files. If these permissions are overly permissive, they may allow attackers with access to the Jenkins controller file system to read and write the file before it is used in the build.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Temporary file parameter created with insecure permissions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27903", }, { category: "external", summary: "RHBZ#2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27903", url: "https://www.cve.org/CVERecord?id=CVE-2023-27903", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Temporary file parameter created with insecure permissions", }, { cve: "CVE-2023-27904", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177634", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. The affected version of Jenkins prints an error stack trace on agent-related pages when agent connections are broken. This stack trace may contain information about Jenkins configuration that is otherwise inaccessible to attackers.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Information disclosure through error stack traces related to agents", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27904", }, { category: "external", summary: "RHBZ#2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27904", url: "https://www.cve.org/CVERecord?id=CVE-2023-27904", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Information disclosure through error stack traces related to agents", }, ], }
rhsa-2023:0777
Vulnerability from csaf_redhat
Published
2023-02-23 00:01
Modified
2025-03-19 19:41
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.9.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2023:0778
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)
* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.9.56 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.9.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.56. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:0778\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization (CVE-2020-7692)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2022-45380)\n\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin (CVE-2022-45381)\n\n* http2-server: Invalid HTTP/2 requests cause DoS (CVE-2022-2048)\n\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin (CVE-2022-30946)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins: Observable timing discrepancy allows determining username validity (CVE-2022-34174)\n\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git (CVE-2022-36882)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36883)\n\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook (CVE-2022-36884)\n\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub Plugin (CVE-2022-36885)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.9 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.9/updating/updating-cluster-cli.html", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0777", url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", url: "https://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0777.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.9.56 security update", tracking: { current_release_date: "2025-03-19T19:41:32+00:00", generator: { date: "2025-03-19T19:41:32+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:0777", initial_release_date: "2023-02-23T00:01:27+00:00", revision_history: [ { date: "2023-02-23T00:01:27+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-23T00:01:27+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-19T19:41:32+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.9", product: { name: "Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.9::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.src", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.src", product_id: "jenkins-0:2.361.1.1675668150-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_id: "jenkins-0:2.361.1.1675668150-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.1.1675668150-1.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.1.1675668150-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", }, product_reference: "jenkins-0:2.361.1.1675668150-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.9", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src as a component of Red Hat OpenShift Container Platform 4.9", product_id: "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.9.1675668922-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.9", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-2048", cwe: { id: "CWE-410", name: "Insufficient Resource Pool", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116952", }, ], notes: [ { category: "description", text: "A flaw was found in the Eclipse Jetty http2-server package. This flaw allows an attacker to cause a denial of service in the server via HTTP/2 requests.", title: "Vulnerability description", }, { category: "summary", text: "http2-server: Invalid HTTP/2 requests cause DoS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-2048", }, { category: "external", summary: "RHBZ#2116952", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116952", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-2048", url: "https://www.cve.org/CVERecord?id=CVE-2022-2048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-2048", }, { category: "external", summary: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", url: "https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgmr-mf83-7x4j", }, ], release_date: "2022-07-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "http2-server: Invalid HTTP/2 requests cause DoS", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-34174", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119653", }, ], notes: [ { category: "description", text: "In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with a valid username and wrong password, when using the Jenkins user database security realm.", title: "Vulnerability description", }, { category: "summary", text: "jenkins: Observable timing discrepancy allows determining username validity", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-34174", }, { category: "external", summary: "RHBZ#2119653", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119653", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-34174", url: "https://www.cve.org/CVERecord?id=CVE-2022-34174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-34174", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", url: "https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2566", }, ], release_date: "2022-06-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins: Observable timing discrepancy allows determining username validity", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], known_not_affected: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-23T00:01:27+00:00", details: "For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.9/release_notes/ocp-4-9-release-notes.html", product_ids: [ "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0777", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-0:2.361.1.1675668150-1.el8.src", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.noarch", "8Base-RHOSE-4.9:jenkins-2-plugins-0:4.9.1675668922-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
RHSA-2023:0560
Vulnerability from csaf_redhat
Published
2023-02-08 18:41
Modified
2025-03-19 18:17
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:
Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in
Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in
Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for
OAuth 2.0 for Native Apps can lead to improper authorization
(CVE-2020-7692)
* snakeyaml: Denial of Service due to missing nested depth limitation for
collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be
bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security
Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin
(CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability
in Pipeline Utility Steps Plugin (CVE-2022-45381)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin
(CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by
Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin
(CVE-2022-30954)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in
org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub
Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be
bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:
Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43401)\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:\nGroovy Plugin (CVE-2022-43402)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43403)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43404)\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in\nPipeline: Groovy Libraries Plugin (CVE-2022-43405)\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in\nPipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n* google-oauth-client: missing PKCE support in accordance with the RFC for\nOAuth 2.0 for Native Apps can lead to improper authorization\n(CVE-2020-7692)\n* snakeyaml: Denial of Service due to missing nested depth limitation for\ncollections (CVE-2022-25857)\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be\nbypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n* jenkins-plugin/script-security: Whole-script approval in Script Security\nPlugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin\n(CVE-2022-45380)\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability\nin Pipeline Utility Steps Plugin (CVE-2022-45381)\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin\n(CVE-2022-30946)\n* Jenkins plugin: User-scoped credentials exposed to other users by\nPipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin\n(CVE-2022-30954)\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in\norg.jenkins-ci.plugins:git (CVE-2022-36882)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36883)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36884)\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub\nPlugin (CVE-2022-36885)\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be\nbypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:\nSupporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0560", url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0560.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update", tracking: { current_release_date: "2025-03-19T18:17:23+00:00", generator: { date: "2025-03-19T18:17:23+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:0560", initial_release_date: "2023-02-08T18:41:32+00:00", revision_history: [ { date: "2023-02-08T18:41:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-08T18:41:32+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-19T18:17:23+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el7", }, }, }, { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=src", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
rhsa-2023:3198
Vulnerability from csaf_redhat
Published
2023-05-17 17:53
Modified
2025-03-14 21:20
Summary
Red Hat Security Advisory: jenkins and jenkins-2-plugins security update
Notes
Topic
An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* apache-commons-text: variable interpolation RCE (CVE-2022-42889)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* maven: Block repositories using http by default (CVE-2021-26291)
* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)
* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)
* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)
* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)
* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)
* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for jenkins and jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.11.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* apache-commons-text: variable interpolation RCE (CVE-2022-42889)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* maven: Block repositories using http by default (CVE-2021-26291)\n\n* SnakeYaml: Constructor Deserialization Remote Code Execution (CVE-2022-1471)\n\n* snakeyaml: Denial of Service due to missing nested depth limitation for collections (CVE-2022-25857)\n\n* maven-shared-utils: Command injection via Commandline class (CVE-2022-29599)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin (CVE-2023-24422)\n\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin (CVE-2022-30954)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin (CVE-2023-25761)\n\n* jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin (CVE-2023-25762)\n\n* Jenkins: Temporary file parameter created with insecure permissions (CVE-2023-27903)\n\n* Jenkins: Information disclosure through error stack traces related to agents (CVE-2023-27904)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:3198", url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", url: "https://docs.openshift.com/container-platform/4.11/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", }, { category: "external", summary: "1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3198.json", }, ], title: "Red Hat Security Advisory: jenkins and jenkins-2-plugins security update", tracking: { current_release_date: "2025-03-14T21:20:21+00:00", generator: { date: "2025-03-14T21:20:21+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:3198", initial_release_date: "2023-05-17T17:53:04+00:00", revision_history: [ { date: "2023-05-17T17:53:04+00:00", number: "1", summary: "Initial version", }, { date: "2023-05-17T17:53:04+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-14T21:20:21+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product: { name: "OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.11::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.src", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.src", product_id: "jenkins-0:2.387.1.1683009763-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_id: "jenkins-0:2.387.1.1683009763-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.387.1.1683009763-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.387.1.1683009763-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", }, product_reference: "jenkins-0:2.387.1.1683009763-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.11 for RHEL 8", product_id: "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.11.1683009941-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.11", }, ], }, vulnerabilities: [ { cve: "CVE-2021-26291", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-04-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1955739", }, ], notes: [ { category: "description", text: "A flaw was found in maven. Repositories that are defined in a dependency’s Project Object Model (pom), which may be unknown to users, are used by default resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository. The highest threat from this vulnerability is to data confidentiality and integrity.", title: "Vulnerability description", }, { category: "summary", text: "maven: Block repositories using http by default", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-26291", }, { category: "external", summary: "RHBZ#1955739", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-26291", url: "https://www.cve.org/CVERecord?id=CVE-2021-26291", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", }, { category: "external", summary: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", url: "https://maven.apache.org/docs/3.8.1/release-notes.html#cve-2021-26291", }, ], release_date: "2021-04-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "To avoid possible man-in-the-middle related attacks with this flaw, ensure any linked repositories in maven POMs use https and not http.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "maven: Block repositories using http by default", }, { cve: "CVE-2022-1471", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-12-01T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2150009", }, ], notes: [ { category: "description", text: "A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution (RCE).", title: "Vulnerability description", }, { category: "summary", text: "SnakeYaml: Constructor Deserialization Remote Code Execution", title: "Vulnerability summary", }, { category: "other", text: "In the Red Hat Process Automation 7 (RHPAM) the untrusted, malicious YAML file for deserialization by the vulnerable Snakeyaml's SafeConstructor class must be provided intentionally by the RHPAM user which requires high privileges. The potential attack complexity is also high because it depends on conditions that are beyond the attacker's control. Due to that the impact for RHPAM is reduced to Low.\n\nRed Hat Fuse 7 does not expose by default any endpoint that passes incoming data/request into vulnerable Snakeyaml's Constructor class nor pass untrusted data to this class. When this class is used, it’s still only used to parse internal configuration, hence the impact by this vulnerability to Red Hat Fuse 7 is reduced to Moderate.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-1471", }, { category: "external", summary: "RHBZ#2150009", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2150009", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-1471", url: "https://www.cve.org/CVERecord?id=CVE-2022-1471", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-1471", }, { category: "external", summary: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", url: "https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "SnakeYaml: Constructor Deserialization Remote Code Execution", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-29599", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-03-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2066479", }, ], notes: [ { category: "description", text: "A flaw was found in the maven-shared-utils package. This issue allows a Command Injection due to improper escaping, allowing a shell injection attack.", title: "Vulnerability description", }, { category: "summary", text: "maven-shared-utils: Command injection via Commandline class", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Satellite ships Candlepin component, which uses the Tomcatjss module from the RHEL AppStream repository. In turn, Tomcatjss relies on Maven, which itself depends on affected Apache Maven Shared Utils. Due to the fact that Satellite does not directly use Apache Maven Shared Utils, or expose it in its code, it is considered not affected by the flaw. Satellite customers can resolve the security warning by updating to the fixed Apache Maven Shared Utils through the updated Maven module, which is available in the RHEL 8 AppStream repository. It's worth noting that this solution applies solely to RHEL 8, which supports modules exclusively, and it is not applicable to earlier versions including RHEL 7.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29599", }, { category: "external", summary: "RHBZ#2066479", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2066479", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29599", url: "https://www.cve.org/CVERecord?id=CVE-2022-29599", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29599", }, ], release_date: "2020-05-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "maven-shared-utils: Command injection via Commandline class", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-42889", cwe: { id: "CWE-1188", name: "Initialization of a Resource with an Insecure Default", }, discovery_date: "2022-10-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135435", }, ], notes: [ { category: "description", text: "A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.", title: "Vulnerability description", }, { category: "summary", text: "apache-commons-text: variable interpolation RCE", title: "Vulnerability summary", }, { category: "other", text: "In order to carry successful exploitation of this vulnerability, the following conditions must be in place on the affected target:\n - Usage of specific methods that interpolate the variables as described in the flaw\n - Usage of external input for those methods\n - Usage of that external input has to be unsanitized/no \"allow list\"/etc.\n\nThe following products have *Low* impact because they have maven references to the affected package but do not ship it nor use the code:\n- Red Hat EAP Expansion Pack (EAP-XP)\n- Red Hat Camel-K\n- Red Hat Camel-Quarkus\n\nRed Hat Satellite ships Candlepin that embeds Apache Commons Text, however, it is not vulnerable to the flaw since the library has not been exposed in the product code. In Candlepin, the Commons Text is being pulled for the Liquibase and ActiveMQ Artemis libraries as a dependency. Red Hat Product Security has evaluated and rated the impact of the flaw as Low for Satellite since there was no harm identified to the confidentiality, integrity, or availability of systems.\n\n- The OCP has a *Moderate* impact because the affected library is a third-party library in the OCP jenkins-2-plugin component which reduces the possibilities of successful exploitation.\n- The OCP-4.8 is affected by this CVE and is in an extended life phase. For versions of products in the Extended Life Phase, Red Hat will provide limited ongoing technical support. No bug fixes, security fixes, hardware enablement or root-cause analysis will be available during this phase, and support will be provided on existing installations only.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42889", }, { category: "external", summary: "RHBZ#2135435", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135435", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42889", url: "https://www.cve.org/CVERecord?id=CVE-2022-42889", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42889", }, { category: "external", summary: "https://blogs.apache.org/security/entry/cve-2022-42889", url: "https://blogs.apache.org/security/entry/cve-2022-42889", }, { category: "external", summary: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", url: "https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om", }, { category: "external", summary: "https://seclists.org/oss-sec/2022/q4/22", url: "https://seclists.org/oss-sec/2022/q4/22", }, ], release_date: "2022-10-13T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "This flaw may be avoided by ensuring that any external inputs used with the Commons-Text lookup methods are sanitized properly. Untrusted input should always be thoroughly sanitized before using in any potentially risky situations.", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "apache-commons-text: variable interpolation RCE", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2023-24422", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2023-01-25T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2164278", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. In affected versions of the script-security plugin, property assignments performed implicitly by the Groovy language runtime when invoking map constructors were not intercepted by the sandbox. This vulnerability allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-24422", }, { category: "external", summary: "RHBZ#2164278", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2164278", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-24422", url: "https://www.cve.org/CVERecord?id=CVE-2023-24422", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-24422", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", url: "https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-3016", }, ], release_date: "2023-01-24T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-2-plugins/script-security: Sandbox bypass vulnerability in Script Security Plugin", }, { cve: "CVE-2023-25761", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170039", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins JUnit plugin. The affected versions of the JUnit Plugin do not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting (XSS) vulnerability. This may allow an attacker to control test case class names in the JUnit resources processed by the plugin.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25761", }, { category: "external", summary: "RHBZ#2170039", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170039", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25761", url: "https://www.cve.org/CVERecord?id=CVE-2023-25761", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25761", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3032", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2023-25762", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2023-02-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2170041", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins pipeline-build-step plugin. Affected versions of the pipeline-build-step plugin do not escape job names in a JavaScript expression used in the Pipeline Snippet Generator. This can result in a stored cross-site scripting (XSS) vulnerability that may allow attackers to control job names.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support, therefore, the OpenShift 3.11 Jenkins component is marked as out of support scope in this CVE.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-25762", }, { category: "external", summary: "RHBZ#2170041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2170041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-25762", url: "https://www.cve.org/CVERecord?id=CVE-2023-25762", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-25762", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", url: "https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-3019", }, ], release_date: "2023-02-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-2-plugins/pipeline-build-step: Stored XSS vulnerability in Pipeline: Build Step Plugin", }, { cve: "CVE-2023-27903", cwe: { id: "CWE-266", name: "Incorrect Privilege Assignment", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177632", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. When triggering a build from the Jenkins CLI, Jenkins creates a temporary file on the controller if a file parameter is provided through the CLI’s standard input. Affected versions of Jenkins create this temporary file in the default temporary directory with the default permissions for newly created files. If these permissions are overly permissive, they may allow attackers with access to the Jenkins controller file system to read and write the file before it is used in the build.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Temporary file parameter created with insecure permissions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27903", }, { category: "external", summary: "RHBZ#2177632", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177632", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27903", url: "https://www.cve.org/CVERecord?id=CVE-2023-27903", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27903", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3058", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 4.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Temporary file parameter created with insecure permissions", }, { cve: "CVE-2023-27904", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-03-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2177634", }, ], notes: [ { category: "description", text: "A flaw was found in Jenkins. The affected version of Jenkins prints an error stack trace on agent-related pages when agent connections are broken. This stack trace may contain information about Jenkins configuration that is otherwise inaccessible to attackers.", title: "Vulnerability description", }, { category: "summary", text: "Jenkins: Information disclosure through error stack traces related to agents", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of the scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-27904", }, { category: "external", summary: "RHBZ#2177634", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2177634", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-27904", url: "https://www.cve.org/CVERecord?id=CVE-2023-27904", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-27904", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", url: "https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2120", }, ], release_date: "2023-03-10T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-05-17T17:53:04+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:3198", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-0:2.387.1.1683009763-3.el8.src", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.noarch", "8Base-OCP-Tools-4.11:jenkins-2-plugins-0:4.11.1683009941-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "Jenkins: Information disclosure through error stack traces related to agents", }, ], }
rhsa-2023:1064
Vulnerability from csaf_redhat
Published
2023-03-06 09:01
Modified
2025-03-14 18:54
Summary
Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update
Notes
Topic
An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)
* jackson-databind: use of deeply nested arrays (CVE-2022-42004)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)
* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for Jenkins and Jenkins-2-plugins is now available for OpenShift Developer Tools and Services for OCP 4.12.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43401)\n\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin (CVE-2022-43402)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43403)\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin (CVE-2022-43404)\n\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin (CVE-2022-43405)\n\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n\n* Pipeline Shared Groovy Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin (CVE-2022-29047)\n\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n\n* Jenkins plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n\n* jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS (CVE-2022-42003)\n\n* jackson-databind: use of deeply nested arrays (CVE-2022-42004)\n\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin (CVE-2022-43409)\n\n* jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin (CVE-2022-43410)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:1064", url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1064.json", }, ], title: "Red Hat Security Advisory: OpenShift Developer Tools and Services for OCP 4.12 security update", tracking: { current_release_date: "2025-03-14T18:54:06+00:00", generator: { date: "2025-03-14T18:54:06+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:1064", initial_release_date: "2023-03-06T09:01:46+00:00", revision_history: [ { date: "2023-03-06T09:01:46+00:00", number: "1", summary: "Initial version", }, { date: "2023-03-06T09:01:46+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-14T18:54:06+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "OpenShift Developer Tools and Services for OCP 4.12", product: { name: "OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12", product_identification_helper: { cpe: "cpe:/a:redhat:ocp_tools:4.12::el8", }, }, }, ], category: "product_family", name: "OpenShift Jenkins", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.src", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.src", product_id: "jenkins-0:2.361.4.1675702346-3.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_id: "jenkins-0:2.361.4.1675702346-3.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins@2.361.4.1675702346-3.el8?arch=noarch", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.12.1675702407-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-0:2.361.4.1675702346-3.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", }, product_reference: "jenkins-0:2.361.4.1675702346-3.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src as a component of OpenShift Developer Tools and Services for OCP 4.12", product_id: "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.12.1675702407-1.el8.src", relates_to_product_reference: "8Base-OCP-Tools-4.12", }, ], }, vulnerabilities: [ { cve: "CVE-2022-29047", cwe: { id: "CWE-288", name: "Authentication Bypass Using an Alternate Path or Channel", }, discovery_date: "2022-04-13T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2074855", }, ], notes: [ { category: "description", text: "A flaw was found in the Jenkins Pipeline: Shared Groovy Libraries plugin. The Jenkins Pipeline: Shared Groovy Libraries plugin allows attackers to submit pull requests. However, the attacker cannot commit directly to the configured Source Control Management (SCM) to effectively change the Pipeline behavior by changing the definition of a dynamically retrieved library in their pull request, even with the Pipeline configured not to trust them.", title: "Vulnerability description", }, { category: "summary", text: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-29047", }, { category: "external", summary: "RHBZ#2074855", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2074855", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-29047", url: "https://www.cve.org/CVERecord?id=CVE-2022-29047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-29047", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", url: "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-1951", }, ], release_date: "2022-04-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.3, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "Libraries: Untrusted users can modify some Pipeline libraries in Pipeline Shared Groovy Libraries Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-42003", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135244", }, ], notes: [ { category: "description", text: "A flaw was found in FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled due to unchecked primitive value deserializers to avoid deep wrapper array nesting.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42003", }, { category: "external", summary: "RHBZ#2135244", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135244", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42003", url: "https://www.cve.org/CVERecord?id=CVE-2022-42003", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42003", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS", }, { cve: "CVE-2022-42004", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-10-17T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2135247", }, ], notes: [ { category: "description", text: "A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer._deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices for deserialization.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: use of deeply nested arrays", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-42004", }, { category: "external", summary: "RHBZ#2135247", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2135247", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-42004", url: "https://www.cve.org/CVERecord?id=CVE-2022-42004", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-42004", }, ], release_date: "2022-10-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: use of deeply nested arrays", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-43410", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136369", }, ], notes: [ { category: "description", text: "An information leak was found in a Jenkins plugin. This issue could allow an unauthenticated remote attacker to issue GET requests. The greatest impact is to confidentiality.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43410", }, { category: "external", summary: "RHBZ#2136369", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136369", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43410", url: "https://www.cve.org/CVERecord?id=CVE-2022-43410", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43410", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2831", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/mercurial: Webhook endpoint discloses job names to unauthorized users in Mercurial Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], known_not_affected: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-03-06T09:01:46+00:00", details: "For important instructions on how to upgrade your cluster and fully apply this asynchronous errata update in OpenShift Container Platform 4.12, see the following documentation, which will be updated shortly for this release:\n\nhttps://docs.openshift.com/container-platform/4.12/cicd/jenkins/important-changes-to-openshift-jenkins-images.html", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-0:2.361.4.1675702346-3.el8.src", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.noarch", "8Base-OCP-Tools-4.12:jenkins-2-plugins-0:4.12.1675702407-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, ], }
rhsa-2023:0560
Vulnerability from csaf_redhat
Published
2023-02-08 18:41
Modified
2025-03-19 18:17
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
Security Fix(es):
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43401)
* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:
Groovy Plugin (CVE-2022-43402)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43403)
* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins
Script Security Plugin (CVE-2022-43404)
* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in
Pipeline: Groovy Libraries Plugin (CVE-2022-43405)
* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in
Pipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)
* google-oauth-client: missing PKCE support in accordance with the RFC for
OAuth 2.0 for Native Apps can lead to improper authorization
(CVE-2020-7692)
* snakeyaml: Denial of Service due to missing nested depth limitation for
collections (CVE-2022-25857)
* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be
bypassed in Pipeline: Input Step Plugin (CVE-2022-43407)
* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)
* jenkins-plugin/script-security: Whole-script approval in Script Security
Plugin vulnerable to SHA-1 collisions (CVE-2022-45379)
* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin
(CVE-2022-45380)
* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability
in Pipeline Utility Steps Plugin (CVE-2022-45381)
* Jenkins plugin: CSRF vulnerability in Script Security Plugin
(CVE-2022-30946)
* Jenkins plugin: User-scoped credentials exposed to other users by
Pipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)
* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)
* Jenkins plugin: missing permission checks in Blue Ocean Plugin
(CVE-2022-30954)
* jenkins-plugin: Cross-site Request Forgery (CSRF) in
org.jenkins-ci.plugins:git (CVE-2022-36882)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36883)
* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook
(CVE-2022-36884)
* jenkins plugin: Non-constant time webhook signature comparison in GitHub
Plugin (CVE-2022-36885)
* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be
bypassed in Pipeline: Stage View Plugin (CVE-2022-43408)
* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:
Supporting APIs Plugin (CVE-2022-43409)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat OpenShift Container Platform release 4.10.51 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nSecurity Fix(es):\n\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43401)\n* jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline:\nGroovy Plugin (CVE-2022-43402)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43403)\n* jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins\nScript Security Plugin (CVE-2022-43404)\n* jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in\nPipeline: Groovy Libraries Plugin (CVE-2022-43405)\n* jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in\nPipeline: Deprecated Groovy Libraries Plugin (CVE-2022-43406)\n* google-oauth-client: missing PKCE support in accordance with the RFC for\nOAuth 2.0 for Native Apps can lead to improper authorization\n(CVE-2020-7692)\n* snakeyaml: Denial of Service due to missing nested depth limitation for\ncollections (CVE-2022-25857)\n* jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be\nbypassed in Pipeline: Input Step Plugin (CVE-2022-43407)\n* mina-sshd: Java unsafe deserialization vulnerability (CVE-2022-45047)\n* jenkins-plugin/script-security: Whole-script approval in Script Security\nPlugin vulnerable to SHA-1 collisions (CVE-2022-45379)\n* jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin\n(CVE-2022-45380)\n* jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability\nin Pipeline Utility Steps Plugin (CVE-2022-45381)\n* Jenkins plugin: CSRF vulnerability in Script Security Plugin\n(CVE-2022-30946)\n* Jenkins plugin: User-scoped credentials exposed to other users by\nPipeline SCM API for Blue Ocean Plugin (CVE-2022-30952)\n* Jenkins plugin: CSRF vulnerability in Blue Ocean Plugin (CVE-2022-30953)\n* Jenkins plugin: missing permission checks in Blue Ocean Plugin\n(CVE-2022-30954)\n* jenkins-plugin: Cross-site Request Forgery (CSRF) in\norg.jenkins-ci.plugins:git (CVE-2022-36882)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36883)\n* jenkins plugin: Lack of authentication mechanism in Git Plugin webhook\n(CVE-2022-36884)\n* jenkins plugin: Non-constant time webhook signature comparison in GitHub\nPlugin (CVE-2022-36885)\n* jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be\nbypassed in Pipeline: Stage View Plugin (CVE-2022-43408)\n* jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline:\nSupporting APIs Plugin (CVE-2022-43409)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2023:0560", url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_0560.json", }, ], title: "Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update", tracking: { current_release_date: "2025-03-19T18:17:23+00:00", generator: { date: "2025-03-19T18:17:23+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.1", }, }, id: "RHSA-2023:0560", initial_release_date: "2023-02-08T18:41:32+00:00", revision_history: [ { date: "2023-02-08T18:41:32+00:00", number: "1", summary: "Initial version", }, { date: "2023-02-08T18:41:32+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-19T18:17:23+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el7", }, }, }, { category: "product_name", name: "Red Hat OpenShift Container Platform 4.10", product: { name: "Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:4.10::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenShift Enterprise", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=src", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=src", }, }, }, { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el7?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debugsource@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, { category: "product_version", name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_id: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/cri-o-debuginfo@1.23.5-5.rhaos4.10.gitd9dec98.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_id: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1.el8?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", relates_to_product_reference: "7Server-RH7-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", }, product_reference: "cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", relates_to_product_reference: "8Base-RHOSE-4.10", }, { category: "default_component_of", full_product_name: { name: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src as a component of Red Hat OpenShift Container Platform 4.10", product_id: "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", }, product_reference: "jenkins-2-plugins-0:4.10.1675144701-1.el8.src", relates_to_product_reference: "8Base-RHOSE-4.10", }, ], }, vulnerabilities: [ { cve: "CVE-2020-7692", cwe: { id: "CWE-358", name: "Improperly Implemented Security Check for Standard", }, discovery_date: "2020-07-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "1856376", }, ], notes: [ { category: "description", text: "PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized. An attacker is able to obtain the authorization code using a malicious app on the client-side and use it to gain authorization to the protected resource. This affects the package com.google.oauth-client:google-oauth-client before 1.31.0.", title: "Vulnerability description", }, { category: "summary", text: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-7692", }, { category: "external", summary: "RHBZ#1856376", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1856376", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-7692", url: "https://www.cve.org/CVERecord?id=CVE-2020-7692", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-7692", }, ], release_date: "2020-07-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "google-oauth-client: missing PKCE support in accordance with the RFC for OAuth 2.0 for Native Apps can lead to improper authorization", }, { cve: "CVE-2022-25857", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2022-09-14T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2126789", }, ], notes: [ { category: "description", text: "A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attacker to cause a denial of service (DoS) due to missing nested depth limitation for collections.", title: "Vulnerability description", }, { category: "summary", text: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", title: "Vulnerability summary", }, { category: "other", text: "For RHEL-8 it's downgraded to moderate because \"snakeyaml\" itself in RHEL 8 or RHEL-9 isn't shipped and \"prometheus-jmx-exporter\" is needed as build dependency. And it's not directly exploitable, hence severity marked as moderate.\nRed Hat Integration and AMQ products are not vulnerable to this flaw, so their severity has been lowered to moderate.\nRed Hat Single Sign-On uses snakeyaml from liquibase-core and is only used when performing migrations and would require administrator privileges to execute, hence severity marked as Low.\nRed Hat Fuse 7 is now in Maintenance Support Phase and details about its fix should be present soon. However, Red Hat Fuse Online (Syndesis) does will not contain the fix for this flaw.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-25857", }, { category: "external", summary: "RHBZ#2126789", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2126789", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-25857", url: "https://www.cve.org/CVERecord?id=CVE-2022-25857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-25857", }, { category: "external", summary: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", url: "https://bitbucket.org/snakeyaml/snakeyaml/issues/525", }, ], release_date: "2022-08-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "snakeyaml: Denial of Service due to missing nested depth limitation for collections", }, { cve: "CVE-2022-30946", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119643", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Script Security Plugin 1158.v7c1b_73a_69a_08 and earlier allows attackers to have Jenkins send an HTTP request to an attacker-specified webserver.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30946", }, { category: "external", summary: "RHBZ#2119643", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119643", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30946", url: "https://www.cve.org/CVERecord?id=CVE-2022-30946", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30946", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2116", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Script Security Plugin", }, { cve: "CVE-2022-30952", cwe: { id: "CWE-668", name: "Exposure of Resource to Wrong Sphere", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119645", }, ], notes: [ { category: "description", text: "Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30952", }, { category: "external", summary: "RHBZ#2119645", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119645", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30952", url: "https://www.cve.org/CVERecord?id=CVE-2022-30952", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30952", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-714", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: User-scoped credentials exposed to other users by Pipeline SCM API for Blue Ocean Plugin", }, { cve: "CVE-2022-30953", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119646", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability in Jenkins Blue Ocean Plugin 1.25.3 and earlier allows attackers to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: CSRF vulnerability in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30953", }, { category: "external", summary: "RHBZ#2119646", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119646", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30953", url: "https://www.cve.org/CVERecord?id=CVE-2022-30953", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30953", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: CSRF vulnerability in Blue Ocean Plugin", }, { cve: "CVE-2022-30954", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119647", }, ], notes: [ { category: "description", text: "Jenkins Blue Ocean Plugin 1.25.3 and earlier does not perform a permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified HTTP server.", title: "Vulnerability description", }, { category: "summary", text: "plugin: missing permission checks in Blue Ocean Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-30954", }, { category: "external", summary: "RHBZ#2119647", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119647", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-30954", url: "https://www.cve.org/CVERecord?id=CVE-2022-30954", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-30954", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", url: "https://www.jenkins.io/security/advisory/2022-05-17/#SECURITY-2502", }, ], release_date: "2022-05-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: missing permission checks in Blue Ocean Plugin", }, { cve: "CVE-2022-36882", cwe: { id: "CWE-352", name: "Cross-Site Request Forgery (CSRF)", }, discovery_date: "2022-08-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2116840", }, ], notes: [ { category: "description", text: "A flaw was found in the Git Jenkins plugin. The affected versions of the Git Jenkins Plugin allow attackers to trigger the builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36882", }, { category: "external", summary: "RHBZ#2116840", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2116840", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36882", url: "https://www.cve.org/CVERecord?id=CVE-2022-36882", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36882", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-08-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin: Cross-site Request Forgery (CSRF) in org.jenkins-ci.plugins:git", }, { cve: "CVE-2022-36883", cwe: { id: "CWE-862", name: "Missing Authorization", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119656", }, ], notes: [ { category: "description", text: "A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36883", }, { category: "external", summary: "RHBZ#2119656", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119656", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36883", url: "https://www.cve.org/CVERecord?id=CVE-2022-36883", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36883", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36884", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119657", }, ], notes: [ { category: "description", text: "The webhook endpoint in Jenkins Git Plugin 4.11.3 and earlier provide unauthenticated attackers information about the existence of jobs configured to use an attacker-specified Git repository.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Lack of authentication mechanism in Git Plugin webhook", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36884", }, { category: "external", summary: "RHBZ#2119657", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119657", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36884", url: "https://www.cve.org/CVERecord?id=CVE-2022-36884", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36884", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-284", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Lack of authentication mechanism in Git Plugin webhook", }, { cve: "CVE-2022-36885", cwe: { id: "CWE-208", name: "Observable Timing Discrepancy", }, discovery_date: "2022-08-19T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2119658", }, ], notes: [ { category: "description", text: "Jenkins GitHub Plugin 1.34.4 and earlier uses a non-constant time comparison function when checking whether the provided and computed webhook signatures are equal, allowing attackers to use statistical methods to obtain a valid webhook signature.", title: "Vulnerability description", }, { category: "summary", text: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-36885", }, { category: "external", summary: "RHBZ#2119658", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2119658", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-36885", url: "https://www.cve.org/CVERecord?id=CVE-2022-36885", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-36885", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", url: "https://www.jenkins.io/security/advisory/2022-07-27/#SECURITY-1849", }, ], release_date: "2022-07-27T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "plugin: Non-constant time webhook signature comparison in GitHub Plugin", }, { cve: "CVE-2022-43401", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136381", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43401", }, { category: "external", summary: "RHBZ#2136381", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136381", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43401", url: "https://www.cve.org/CVERecord?id=CVE-2022-43401", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43402", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136379", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43402", }, { category: "external", summary: "RHBZ#2136379", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136379", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43402", url: "https://www.cve.org/CVERecord?id=CVE-2022-43402", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43402", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps: Sandbox bypass vulnerabilities in Pipeline: Groovy Plugin", }, { cve: "CVE-2022-43403", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136382", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43403", }, { category: "external", summary: "RHBZ#2136382", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136382", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43403", url: "https://www.cve.org/CVERecord?id=CVE-2022-43403", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43403", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43404", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136383", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43404", }, { category: "external", summary: "RHBZ#2136383", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136383", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43404", url: "https://www.cve.org/CVERecord?id=CVE-2022-43404", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43404", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/script-security: Sandbox bypass vulnerabilities in Jenkins Script Security Plugin", }, { cve: "CVE-2022-43405", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136374", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43405", }, { category: "external", summary: "RHBZ#2136374", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136374", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43405", url: "https://www.cve.org/CVERecord?id=CVE-2022-43405", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43405", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/pipeline-groovy-lib: Sandbox bypass vulnerability in Pipeline: Groovy Libraries Plugin", }, { cve: "CVE-2022-43406", cwe: { id: "CWE-693", name: "Protection Mechanism Failure", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136370", }, ], notes: [ { category: "description", text: "A sandbox bypass vulnerability was found in several Jenkins plugins. This could allow an authenticated attacker to execute arbitrary code within the Jenkins JVM controller. Exploitation could be achieved by crafting untrusted libraries or pipelines, compromising the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43406", }, { category: "external", summary: "RHBZ#2136370", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136370", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43406", url: "https://www.cve.org/CVERecord?id=CVE-2022-43406", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43406", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(2)", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Critical", }, ], title: "jenkins-plugin/workflow-cps-global-lib: Sandbox bypass vulnerability in Pipeline: Deprecated Groovy Libraries Plugin", }, { cve: "CVE-2022-43407", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136386", }, ], notes: [ { category: "description", text: "A cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an unauthenticated attacker to access Jenkins builds, bypassing CSRF protections. This could compromise the integrity, availability, and confidentiality of Jenkins.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43407", }, { category: "external", summary: "RHBZ#2136386", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136386", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43407", url: "https://www.cve.org/CVERecord?id=CVE-2022-43407", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43407", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2880", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-input-step: CSRF protection for any URL can be bypassed in Pipeline: Input Step Plugin", }, { cve: "CVE-2022-43408", cwe: { id: "CWE-838", name: "Inappropriate Encoding for Output Context", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136388", }, ], notes: [ { category: "description", text: "A Cross-site request forgery (CSRF) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated attacker to access Jenkins builds, bypassing CSRF protections.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43408", }, { category: "external", summary: "RHBZ#2136388", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136388", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43408", url: "https://www.cve.org/CVERecord?id=CVE-2022-43408", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43408", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2828", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/pipeline-stage-view: CSRF protection for any URL can be bypassed in Pipeline: Stage View Plugin", }, { cve: "CVE-2022-43409", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-10-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2136391", }, ], notes: [ { category: "description", text: "A Cross-site scripting (XSS) vulnerability was found in a Jenkins plugin. This issue may allow an authenticated remote attacker to create Pipelines.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-43409", }, { category: "external", summary: "RHBZ#2136391", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2136391", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-43409", url: "https://www.cve.org/CVERecord?id=CVE-2022-43409", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, ], release_date: "2022-10-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jenkins-plugin/workflow-support: Stored XSS vulnerability in Pipeline: Supporting APIs Plugin", }, { cve: "CVE-2022-45047", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2022-11-23T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2145194", }, ], notes: [ { category: "description", text: "A flaw was found in Apache MINA SSHD, when using Java deserialization to load a serialized java.security.PrivateKey. An attacker could benefit from unsafe deserialization by inserting unsecured data that may affect the application or server.", title: "Vulnerability description", }, { category: "summary", text: "mina-sshd: Java unsafe deserialization vulnerability", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Impact as High as there's a mitigation for minimizing the impact which the flaw requires org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to be impacted, which would require an external/public API for an attacker to benefit from it. \n\nRed Hat Fuse 7 and Red Hat JBoss Enterprise Application Platform 7 have a lower rate (moderate) as it's very unlikely to be exploited since those are for internal usage or use a custom implementation in their case.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45047", }, { category: "external", summary: "RHBZ#2145194", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2145194", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45047", url: "https://www.cve.org/CVERecord?id=CVE-2022-45047", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45047", }, { category: "external", summary: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", url: "https://www.mail-archive.com/dev@mina.apache.org/msg39312.html", }, ], release_date: "2022-11-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "workaround", details: "From the maintainer:\n\nFor Apache MINA SSHD <= 2.9.1, do not use org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider to generate and later load your server's host key. Use separately generated host key files, for instance in OpenSSH format, and load them via a org.apache.sshd.common.keyprovider.FileKeyPairProvider instead. Or use a custom implementation instead of \nSimpleGeneratorHostKeyProvider that uses the OpenSSH format for storing and loading the host key (via classes OpenSSHKeyPairResourceWriter and OpenSSHKeyPairResourceParser).", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "mina-sshd: Java unsafe deserialization vulnerability", }, { cve: "CVE-2022-45379", cwe: { id: "CWE-328", name: "Use of Weak Hash", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143090", }, ], notes: [ { category: "description", text: "A flaw was found in the script-security Jenkins Plugin. SHA-1 no longer meets the security standards for producing a cryptographically secure message digest. The affected version of the script-security Plugin stores whole-script approvals as the SHA-1 hash of the approved script.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45379", }, { category: "external", summary: "RHBZ#2143090", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143090", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45379", url: "https://www.cve.org/CVERecord?id=CVE-2022-45379", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45379", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2564", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/script-security: Whole-script approval in Script Security Plugin vulnerable to SHA-1 collisions", }, { cve: "CVE-2022-45380", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143086", }, ], notes: [ { category: "description", text: "A flaw was found in the JUnit Jenkins Plugin. The affected version of the JUnit plugin converts HTTP(S) URLs in test report output to clickable links, which leads to a stored Cross-site scripting (XSS) attack.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence OpenShift 3.11 Jenkins component is marked in this CVE as Out of Support Scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45380", }, { category: "external", summary: "RHBZ#2143086", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143086", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45380", url: "https://www.cve.org/CVERecord?id=CVE-2022-45380", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45380", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2888", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/JUnit: Stored XSS vulnerability in JUnit Plugin", }, { cve: "CVE-2022-45381", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2022-11-16T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2143089", }, ], notes: [ { category: "description", text: "A flaw was found in the Pipeline Utility Steps Jenkins Plugin. The affected version of the Pipeline Utility Steps Plugin does not restrict the set of enabled prefix interpolators and bundles versions of this library that enable the file: prefix interpolator by default. This flaw allows attackers who can configure Pipelines to read arbitrary files from the Jenkins controller file system.", title: "Vulnerability description", }, { category: "summary", text: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", title: "Vulnerability summary", }, { category: "other", text: "OpenShift 3.11 is already in the ELS support model phase. The Jenkins components are out of scope of the ELS support; hence the OpenShift 3.11 Jenkins component is marked in this CVE as out of support scope.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], known_not_affected: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-45381", }, { category: "external", summary: "RHBZ#2143089", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2143089", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-45381", url: "https://www.cve.org/CVERecord?id=CVE-2022-45381", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-45381", }, { category: "external", summary: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", url: "https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2949", }, ], release_date: "2022-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2023-02-08T18:41:32+00:00", details: "For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2023:0560", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, products: [ "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.src", "7Server-RH7-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "7Server-RH7-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el7.x86_64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.src", "8Base-RHOSE-4.10:cri-o-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debuginfo-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.aarch64", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.ppc64le", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.s390x", "8Base-RHOSE-4.10:cri-o-debugsource-0:1.23.5-5.rhaos4.10.gitd9dec98.el8.x86_64", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.noarch", "8Base-RHOSE-4.10:jenkins-2-plugins-0:4.10.1675144701-1.el8.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jenkins-plugin/pipeline-utility-steps: Arbitrary file read vulnerability in Pipeline Utility Steps Plugin", }, ], }
WID-SEC-W-2023-1021
Vulnerability from csaf_certbund
Published
2023-04-18 22:00
Modified
2023-06-29 22:00
Summary
Oracle Communications: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.
Angriff
Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.", title: "Angriff", }, { category: "general", text: "- UNIX\n- Linux\n- Windows\n- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1021 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1021.json", }, { category: "self", summary: "WID-SEC-2023-1021 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1021", }, { category: "external", summary: "IBM Security Bulletin 7008449 vom 2023-06-29", url: "https://www.ibm.com/support/pages/node/7008449", }, { category: "external", summary: "Oracle Critical Patch Update Advisory - April 2023 - Appendix Oracle Communications vom 2023-04-18", url: "https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixCGBU", }, ], source_lang: "en-US", title: "Oracle Communications: Mehrere Schwachstellen", tracking: { current_release_date: "2023-06-29T22:00:00.000+00:00", generator: { date: "2024-08-15T17:49:22.512+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1021", initial_release_date: "2023-04-18T22:00:00.000+00:00", revision_history: [ { date: "2023-04-18T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-29T22:00:00.000+00:00", number: "2", summary: "Neue Updates von IBM aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "IBM DB2", product: { name: "IBM DB2", product_id: "5104", product_identification_helper: { cpe: "cpe:/a:ibm:db2:-", }, }, }, ], category: "vendor", name: "IBM", }, { branches: [ { branches: [ { category: "product_name", name: "Oracle Communications 9.1", product: { name: "Oracle Communications 9.1", product_id: "T019868", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1", }, }, }, { category: "product_name", name: "Oracle Communications 3.3", product: { name: "Oracle Communications 3.3", product_id: "T020687", product_identification_helper: { cpe: "cpe:/a:oracle:communications:3.3", }, }, }, { category: "product_name", name: "Oracle Communications 5.0", product: { name: "Oracle Communications 5.0", product_id: "T021645", product_identification_helper: { cpe: "cpe:/a:oracle:communications:5.0", }, }, }, { category: "product_name", name: "Oracle Communications 12.6.0.0.0", product: { name: "Oracle Communications 12.6.0.0.0", product_id: "T022818", product_identification_helper: { cpe: "cpe:/a:oracle:communications:12.6.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 7.0.0.0.0", product: { name: "Oracle Communications 7.0.0.0.0", product_id: "T022823", product_identification_helper: { cpe: "cpe:/a:oracle:communications:7.0.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 8.6.0.0", product: { name: "Oracle Communications 8.6.0.0", product_id: "T024970", product_identification_helper: { cpe: "cpe:/a:oracle:communications:8.6.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 22.3.0", product: { name: "Oracle Communications 22.3.0", product_id: "T024974", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.3.0", }, }, }, { category: "product_name", name: "Oracle Communications 22.1.0.0.0", product: { name: "Oracle Communications 22.1.0.0.0", product_id: "T025863", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.1.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications <= 22.4.4", product: { name: "Oracle Communications <= 22.4.4", product_id: "T027328", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.4.4", }, }, }, { category: "product_name", name: "Oracle Communications <= 23.1.1", product: { name: "Oracle Communications <= 23.1.1", product_id: "T027329", product_identification_helper: { cpe: "cpe:/a:oracle:communications:23.1.1", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.0", product: { name: "Oracle Communications 9.0.0", product_id: "T027330", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.1", product: { name: "Oracle Communications 9.0.1", product_id: "T027331", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.1", }, }, }, { category: "product_name", name: "Oracle Communications 9.1.1.4.0", product: { name: "Oracle Communications 9.1.1.4.0", product_id: "T027332", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1.1.4.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.1.1.3.0", product: { name: "Oracle Communications 9.1.1.3.0", product_id: "T027333", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1.1.3.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.1.6.0", product: { name: "Oracle Communications 9.0.1.6.0", product_id: "T027334", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.1.6.0", }, }, }, { category: "product_name", name: "Oracle Communications 8.45", product: { name: "Oracle Communications 8.45", product_id: "T027335", product_identification_helper: { cpe: "cpe:/a:oracle:communications:8.45", }, }, }, { category: "product_name", name: "Oracle Communications 9.15", product: { name: "Oracle Communications 9.15", product_id: "T027336", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.15", }, }, }, { category: "product_name", name: "Oracle Communications 4.0", product: { name: "Oracle Communications 4.0", product_id: "T027337", product_identification_helper: { cpe: "cpe:/a:oracle:communications:4.0", }, }, }, { category: "product_name", name: "Oracle Communications 12.6.1.0.0", product: { name: "Oracle Communications 12.6.1.0.0", product_id: "T027338", product_identification_helper: { cpe: "cpe:/a:oracle:communications:12.6.1.0.0", }, }, }, ], category: "product_name", name: "Communications", }, ], category: "vendor", name: "Oracle", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28708", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-28708", }, { cve: "CVE-2023-25690", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25690", }, { cve: "CVE-2023-25613", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25613", }, { cve: "CVE-2023-25577", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25577", }, { cve: "CVE-2023-24998", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-24998", }, { cve: "CVE-2023-23931", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-23931", }, { cve: "CVE-2023-23916", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-23916", }, { cve: "CVE-2023-0361", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-0361", }, { cve: "CVE-2022-47629", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-47629", }, { cve: "CVE-2022-46364", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-46364", }, { cve: "CVE-2022-45143", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-45143", }, { cve: "CVE-2022-45047", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-45047", }, { cve: "CVE-2022-4415", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-4415", }, { cve: "CVE-2022-43402", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-43402", }, { cve: "CVE-2022-43401", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-43401", }, { cve: "CVE-2022-42898", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42898", }, { cve: "CVE-2022-42252", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42252", }, { cve: "CVE-2022-42003", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42003", }, { cve: "CVE-2022-41966", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-41966", }, { cve: "CVE-2022-41881", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-41881", }, { cve: "CVE-2022-40304", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-40304", }, { cve: "CVE-2022-40151", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-40151", }, { cve: "CVE-2022-38752", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-38752", }, { cve: "CVE-2022-37865", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-37865", }, { cve: "CVE-2022-37434", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-37434", }, { cve: "CVE-2022-35737", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-35737", }, { cve: "CVE-2022-3171", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-3171", }, { cve: "CVE-2022-31692", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31692", }, { cve: "CVE-2022-31630", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31630", }, { cve: "CVE-2022-31129", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31129", }, { cve: "CVE-2022-31123", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31123", }, { cve: "CVE-2022-28199", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-28199", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-23491", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-23491", }, { cve: "CVE-2022-1471", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-1471", }, { cve: "CVE-2022-1292", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-1292", }, { cve: "CVE-2021-46848", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2021-46848", }, { cve: "CVE-2021-37519", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2021-37519", }, ], }
WID-SEC-W-2022-1804
Vulnerability from csaf_certbund
Published
2022-10-19 22:00
Modified
2024-08-14 22:00
Summary
Jenkins Plugins: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in verschiedenen Jenkins Plugins ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- MacOS X
- UNIX
- Windows
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in verschiedenen Jenkins Plugins ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- UNIX\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-1804 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1804.json", }, { category: "self", summary: "WID-SEC-2022-1804 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1804", }, { category: "external", summary: "Jenkins Security Advisory vom 2022-10-19", url: "https://www.jenkins.io/security/advisory/2022-10-19/", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-4g29-r7vj-2rpv", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-64r9-x74q-wxmh", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-682j-2p53-xp5f", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-73v5-w6fg-2m44", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-7rrj-hqv6-fvpp", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-8cxw-wvhc-p4x4", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-f9f9-4r63-4qcc", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-g975-f26h-93g8", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-px4x-hjm5-w8x3", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:0560 vom 2023-02-08", url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:0777 vom 2023-02-23", url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:1064 vom 2023-03-06", url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3198 vom 2023-05-18", url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:6172 vom 2023-10-30", url: "https://access.redhat.com/errata/RHSA-2023:6172", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:5411 vom 2024-08-15", url: "https://access.redhat.com/errata/RHSA-2024:5411", }, ], source_lang: "en-US", title: "Jenkins Plugins: Mehrere Schwachstellen", tracking: { current_release_date: "2024-08-14T22:00:00.000+00:00", generator: { date: "2024-08-15T17:36:51.591+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-1804", initial_release_date: "2022-10-19T22:00:00.000+00:00", revision_history: [ { date: "2022-10-19T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-02-08T23:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-02-22T23:00:00.000+00:00", number: "3", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-03-06T23:00:00.000+00:00", number: "4", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-05-18T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-10-30T23:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-08-14T22:00:00.000+00:00", number: "7", summary: "Neue Updates von Red Hat aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "plugins", product: { name: "Jenkins Jenkins plugins", product_id: "T013614", product_identification_helper: { cpe: "cpe:/a:cloudbees:jenkins:plugins", }, }, }, ], category: "product_name", name: "Jenkins", }, ], category: "vendor", name: "Jenkins", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, { branches: [ { category: "product_version", name: "container platform 4.0.51", product: { name: "Red Hat OpenShift container platform 4.0.51", product_id: "T026183", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:container_platform_4.0.51", }, }, }, ], category: "product_name", name: "OpenShift", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2017-2601", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2017-2601", }, { cve: "CVE-2022-43401", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43401", }, { cve: "CVE-2022-43402", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43402", }, { cve: "CVE-2022-43403", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43403", }, { cve: "CVE-2022-43404", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43404", }, { cve: "CVE-2022-43405", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43405", }, { cve: "CVE-2022-43406", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43406", }, { cve: "CVE-2022-43407", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43407", }, { cve: "CVE-2022-43408", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43408", }, { cve: "CVE-2022-43409", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43409", }, { cve: "CVE-2022-43410", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43410", }, { cve: "CVE-2022-43411", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43411", }, { cve: "CVE-2022-43412", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43412", }, { cve: "CVE-2022-43413", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43413", }, { cve: "CVE-2022-43414", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43414", }, { cve: "CVE-2022-43415", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43415", }, { cve: "CVE-2022-43416", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43416", }, { cve: "CVE-2022-43417", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43417", }, { cve: "CVE-2022-43418", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43418", }, { cve: "CVE-2022-43419", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43419", }, { cve: "CVE-2022-43420", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43420", }, { cve: "CVE-2022-43421", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43421", }, { cve: "CVE-2022-43422", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43422", }, { cve: "CVE-2022-43423", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43423", }, { cve: "CVE-2022-43424", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43424", }, { cve: "CVE-2022-43425", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43425", }, { cve: "CVE-2022-43426", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43426", }, { cve: "CVE-2022-43427", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43427", }, { cve: "CVE-2022-43428", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43428", }, { cve: "CVE-2022-43429", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43429", }, { cve: "CVE-2022-43430", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43430", }, { cve: "CVE-2022-43431", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43431", }, { cve: "CVE-2022-43432", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43432", }, { cve: "CVE-2022-43433", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43433", }, { cve: "CVE-2022-43434", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43434", }, { cve: "CVE-2022-43435", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43435", }, ], }
wid-sec-w-2023-1021
Vulnerability from csaf_certbund
Published
2023-04-18 22:00
Modified
2023-06-29 22:00
Summary
Oracle Communications: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.
Angriff
Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.", title: "Angriff", }, { category: "general", text: "- UNIX\n- Linux\n- Windows\n- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-1021 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1021.json", }, { category: "self", summary: "WID-SEC-2023-1021 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1021", }, { category: "external", summary: "IBM Security Bulletin 7008449 vom 2023-06-29", url: "https://www.ibm.com/support/pages/node/7008449", }, { category: "external", summary: "Oracle Critical Patch Update Advisory - April 2023 - Appendix Oracle Communications vom 2023-04-18", url: "https://www.oracle.com/security-alerts/cpuapr2023.html#AppendixCGBU", }, ], source_lang: "en-US", title: "Oracle Communications: Mehrere Schwachstellen", tracking: { current_release_date: "2023-06-29T22:00:00.000+00:00", generator: { date: "2024-08-15T17:49:22.512+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2023-1021", initial_release_date: "2023-04-18T22:00:00.000+00:00", revision_history: [ { date: "2023-04-18T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-06-29T22:00:00.000+00:00", number: "2", summary: "Neue Updates von IBM aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "IBM DB2", product: { name: "IBM DB2", product_id: "5104", product_identification_helper: { cpe: "cpe:/a:ibm:db2:-", }, }, }, ], category: "vendor", name: "IBM", }, { branches: [ { branches: [ { category: "product_name", name: "Oracle Communications 9.1", product: { name: "Oracle Communications 9.1", product_id: "T019868", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1", }, }, }, { category: "product_name", name: "Oracle Communications 3.3", product: { name: "Oracle Communications 3.3", product_id: "T020687", product_identification_helper: { cpe: "cpe:/a:oracle:communications:3.3", }, }, }, { category: "product_name", name: "Oracle Communications 5.0", product: { name: "Oracle Communications 5.0", product_id: "T021645", product_identification_helper: { cpe: "cpe:/a:oracle:communications:5.0", }, }, }, { category: "product_name", name: "Oracle Communications 12.6.0.0.0", product: { name: "Oracle Communications 12.6.0.0.0", product_id: "T022818", product_identification_helper: { cpe: "cpe:/a:oracle:communications:12.6.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 7.0.0.0.0", product: { name: "Oracle Communications 7.0.0.0.0", product_id: "T022823", product_identification_helper: { cpe: "cpe:/a:oracle:communications:7.0.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 8.6.0.0", product: { name: "Oracle Communications 8.6.0.0", product_id: "T024970", product_identification_helper: { cpe: "cpe:/a:oracle:communications:8.6.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 22.3.0", product: { name: "Oracle Communications 22.3.0", product_id: "T024974", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.3.0", }, }, }, { category: "product_name", name: "Oracle Communications 22.1.0.0.0", product: { name: "Oracle Communications 22.1.0.0.0", product_id: "T025863", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.1.0.0.0", }, }, }, { category: "product_name", name: "Oracle Communications <= 22.4.4", product: { name: "Oracle Communications <= 22.4.4", product_id: "T027328", product_identification_helper: { cpe: "cpe:/a:oracle:communications:22.4.4", }, }, }, { category: "product_name", name: "Oracle Communications <= 23.1.1", product: { name: "Oracle Communications <= 23.1.1", product_id: "T027329", product_identification_helper: { cpe: "cpe:/a:oracle:communications:23.1.1", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.0", product: { name: "Oracle Communications 9.0.0", product_id: "T027330", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.1", product: { name: "Oracle Communications 9.0.1", product_id: "T027331", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.1", }, }, }, { category: "product_name", name: "Oracle Communications 9.1.1.4.0", product: { name: "Oracle Communications 9.1.1.4.0", product_id: "T027332", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1.1.4.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.1.1.3.0", product: { name: "Oracle Communications 9.1.1.3.0", product_id: "T027333", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.1.1.3.0", }, }, }, { category: "product_name", name: "Oracle Communications 9.0.1.6.0", product: { name: "Oracle Communications 9.0.1.6.0", product_id: "T027334", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.0.1.6.0", }, }, }, { category: "product_name", name: "Oracle Communications 8.45", product: { name: "Oracle Communications 8.45", product_id: "T027335", product_identification_helper: { cpe: "cpe:/a:oracle:communications:8.45", }, }, }, { category: "product_name", name: "Oracle Communications 9.15", product: { name: "Oracle Communications 9.15", product_id: "T027336", product_identification_helper: { cpe: "cpe:/a:oracle:communications:9.15", }, }, }, { category: "product_name", name: "Oracle Communications 4.0", product: { name: "Oracle Communications 4.0", product_id: "T027337", product_identification_helper: { cpe: "cpe:/a:oracle:communications:4.0", }, }, }, { category: "product_name", name: "Oracle Communications 12.6.1.0.0", product: { name: "Oracle Communications 12.6.1.0.0", product_id: "T027338", product_identification_helper: { cpe: "cpe:/a:oracle:communications:12.6.1.0.0", }, }, }, ], category: "product_name", name: "Communications", }, ], category: "vendor", name: "Oracle", }, ], }, vulnerabilities: [ { cve: "CVE-2023-28708", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-28708", }, { cve: "CVE-2023-25690", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25690", }, { cve: "CVE-2023-25613", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25613", }, { cve: "CVE-2023-25577", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-25577", }, { cve: "CVE-2023-24998", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-24998", }, { cve: "CVE-2023-23931", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-23931", }, { cve: "CVE-2023-23916", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-23916", }, { cve: "CVE-2023-0361", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2023-0361", }, { cve: "CVE-2022-47629", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-47629", }, { cve: "CVE-2022-46364", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-46364", }, { cve: "CVE-2022-45143", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-45143", }, { cve: "CVE-2022-45047", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-45047", }, { cve: "CVE-2022-4415", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-4415", }, { cve: "CVE-2022-43402", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-43402", }, { cve: "CVE-2022-43401", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-43401", }, { cve: "CVE-2022-42898", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42898", }, { cve: "CVE-2022-42252", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42252", }, { cve: "CVE-2022-42003", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-42003", }, { cve: "CVE-2022-41966", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-41966", }, { cve: "CVE-2022-41881", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-41881", }, { cve: "CVE-2022-40304", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-40304", }, { cve: "CVE-2022-40151", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-40151", }, { cve: "CVE-2022-38752", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-38752", }, { cve: "CVE-2022-37865", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-37865", }, { cve: "CVE-2022-37434", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-37434", }, { cve: "CVE-2022-35737", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-35737", }, { cve: "CVE-2022-3171", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-3171", }, { cve: "CVE-2022-31692", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31692", }, { cve: "CVE-2022-31630", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31630", }, { cve: "CVE-2022-31129", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31129", }, { cve: "CVE-2022-31123", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-31123", }, { cve: "CVE-2022-28199", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-28199", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-23491", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-23491", }, { cve: "CVE-2022-1471", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-1471", }, { cve: "CVE-2022-1292", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2022-1292", }, { cve: "CVE-2021-46848", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2021-46848", }, { cve: "CVE-2021-37519", notes: [ { category: "description", text: "In Oracle Communications existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder authentisierter Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist \"HIGH\" für \"Confidentiality\", \"Integrity\" und \"Availability\" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"HOCH\" für die Schadenshöhe.", }, ], product_status: { known_affected: [ "T027330", "T022818", "T020687", "T022823", "T024974", "T019868", "T021645", "5104", "T027337", "T024970", "T027338", "T027335", "T025863", "T027336", "T027333", "T027334", "T027331", "T027332", ], last_affected: [ "T027328", "T027329", ], }, release_date: "2023-04-18T22:00:00.000+00:00", title: "CVE-2021-37519", }, ], }
wid-sec-w-2022-1804
Vulnerability from csaf_certbund
Published
2022-10-19 22:00
Modified
2024-08-14 22:00
Summary
Jenkins Plugins: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in verschiedenen Jenkins Plugins ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- MacOS X
- UNIX
- Windows
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Jenkins ist ein erweiterbarer, webbasierter Integration Server zur kontinuierlichen Unterstützung bei Softwareentwicklungen aller Art.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in verschiedenen Jenkins Plugins ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- UNIX\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-1804 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1804.json", }, { category: "self", summary: "WID-SEC-2022-1804 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1804", }, { category: "external", summary: "Jenkins Security Advisory vom 2022-10-19", url: "https://www.jenkins.io/security/advisory/2022-10-19/", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-4g29-r7vj-2rpv", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-64r9-x74q-wxmh", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-682j-2p53-xp5f", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-73v5-w6fg-2m44", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-7rrj-hqv6-fvpp", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-8cxw-wvhc-p4x4", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-f9f9-4r63-4qcc", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-g975-f26h-93g8", }, { category: "external", summary: "Github Security Advisory vom 2022-10-19", url: "https://github.com/advisories/GHSA-px4x-hjm5-w8x3", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:0560 vom 2023-02-08", url: "https://access.redhat.com/errata/RHSA-2023:0560", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:0777 vom 2023-02-23", url: "https://access.redhat.com/errata/RHSA-2023:0777", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:1064 vom 2023-03-06", url: "https://access.redhat.com/errata/RHSA-2023:1064", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:3198 vom 2023-05-18", url: "https://access.redhat.com/errata/RHSA-2023:3198", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2023:6172 vom 2023-10-30", url: "https://access.redhat.com/errata/RHSA-2023:6172", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:5411 vom 2024-08-15", url: "https://access.redhat.com/errata/RHSA-2024:5411", }, ], source_lang: "en-US", title: "Jenkins Plugins: Mehrere Schwachstellen", tracking: { current_release_date: "2024-08-14T22:00:00.000+00:00", generator: { date: "2024-08-15T17:36:51.591+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-1804", initial_release_date: "2022-10-19T22:00:00.000+00:00", revision_history: [ { date: "2022-10-19T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-02-08T23:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-02-22T23:00:00.000+00:00", number: "3", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-03-06T23:00:00.000+00:00", number: "4", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-05-18T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2023-10-30T23:00:00.000+00:00", number: "6", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-08-14T22:00:00.000+00:00", number: "7", summary: "Neue Updates von Red Hat aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "plugins", product: { name: "Jenkins Jenkins plugins", product_id: "T013614", product_identification_helper: { cpe: "cpe:/a:cloudbees:jenkins:plugins", }, }, }, ], category: "product_name", name: "Jenkins", }, ], category: "vendor", name: "Jenkins", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, { branches: [ { category: "product_version", name: "container platform 4.0.51", product: { name: "Red Hat OpenShift container platform 4.0.51", product_id: "T026183", product_identification_helper: { cpe: "cpe:/a:redhat:openshift:container_platform_4.0.51", }, }, }, ], category: "product_name", name: "OpenShift", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2017-2601", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2017-2601", }, { cve: "CVE-2022-43401", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43401", }, { cve: "CVE-2022-43402", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43402", }, { cve: "CVE-2022-43403", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43403", }, { cve: "CVE-2022-43404", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43404", }, { cve: "CVE-2022-43405", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43405", }, { cve: "CVE-2022-43406", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43406", }, { cve: "CVE-2022-43407", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43407", }, { cve: "CVE-2022-43408", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43408", }, { cve: "CVE-2022-43409", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43409", }, { cve: "CVE-2022-43410", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43410", }, { cve: "CVE-2022-43411", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43411", }, { cve: "CVE-2022-43412", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43412", }, { cve: "CVE-2022-43413", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43413", }, { cve: "CVE-2022-43414", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43414", }, { cve: "CVE-2022-43415", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43415", }, { cve: "CVE-2022-43416", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43416", }, { cve: "CVE-2022-43417", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43417", }, { cve: "CVE-2022-43418", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43418", }, { cve: "CVE-2022-43419", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43419", }, { cve: "CVE-2022-43420", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43420", }, { cve: "CVE-2022-43421", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43421", }, { cve: "CVE-2022-43422", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43422", }, { cve: "CVE-2022-43423", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43423", }, { cve: "CVE-2022-43424", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43424", }, { cve: "CVE-2022-43425", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43425", }, { cve: "CVE-2022-43426", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43426", }, { cve: "CVE-2022-43427", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43427", }, { cve: "CVE-2022-43428", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43428", }, { cve: "CVE-2022-43429", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43429", }, { cve: "CVE-2022-43430", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43430", }, { cve: "CVE-2022-43431", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43431", }, { cve: "CVE-2022-43432", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43432", }, { cve: "CVE-2022-43433", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43433", }, { cve: "CVE-2022-43434", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43434", }, { cve: "CVE-2022-43435", notes: [ { category: "description", text: "In mehrere Jenkins Plugins existieren Schwachstellen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder einen Cross-Site-Scripting-Angriff durchzuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.", }, ], product_status: { known_affected: [ "T026183", "67646", "T013614", ], }, release_date: "2022-10-19T22:00:00.000+00:00", title: "CVE-2022-43435", }, ], }
fkie_cve-2022-43401
Vulnerability from fkie_nvd
Published
2022-10-19 16:15
Modified
2024-11-21 07:26
Severity ?
Summary
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| jenkinsci-cert@googlegroups.com | http://www.openwall.com/lists/oss-security/2022/10/19/3 | Mailing List, Third Party Advisory | |
| jenkinsci-cert@googlegroups.com | https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2022/10/19/3 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| jenkins | script_security | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:jenkins:script_security:*:*:*:*:*:jenkins:*:*", matchCriteriaId: "62EC83DC-AAE2-44E2-A364-6683544267D8", versionEndIncluding: "1183.v774b_0b_0a_a_451", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.", }, { lang: "es", value: "Una vulnerabilidad de omisión del sandbox que involucra varios moldes llevados a cabo implícitamente por el tiempo de ejecución del lenguaje Groovy en Jenkins Script Security Plugin versiones 1183.v774b_0b_0a_a_451 y anteriores, permite a atacantes con permiso para definir y ejecutar scripts en sandbox, incluyendo Pipelines, omitir la protección del sandbox y ejecutar código arbitrario en el contexto de la JVM del controlador de Jenkins", }, ], id: "CVE-2022-43401", lastModified: "2024-11-21T07:26:24.483", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.1, impactScore: 6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2022-10-19T16:15:10.127", references: [ { source: "jenkinsci-cert@googlegroups.com", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, { source: "jenkinsci-cert@googlegroups.com", tags: [ "Vendor Advisory", ], url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20%281%29", }, ], sourceIdentifier: "jenkinsci-cert@googlegroups.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
ghsa-7vr5-72w7-q6jc
Vulnerability from github
Published
2022-10-19 19:00
Modified
2022-12-16 16:21
Severity ?
Summary
Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin
Details
Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call is to be allowed.
Multiple sandbox bypass vulnerabilities exist in Script Security Plugin and Pipeline: Groovy Plugin:
- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier and in Pipeline: Groovy Plugin 2802.v5ea_628154b_c2 and earlier, various casts performed implicitly by the Groovy language runtime were not intercepted by the sandbox. This includes casts performed when returning values from methods, when assigning local variables, fields, properties, and when defining default arguments for closure, constructor, and method parameters (CVE-2022-43401 in Script Security Plugin and CVE-2022-43402 in Pipeline: Groovy Plugin).
- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier, when casting an array-like value to an array type, per-element casts to the component type of the array are not intercepted by the sandbox (CVE-2022-43403).
- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier, crafted constructor bodies and calls to sandbox-generated synthetic constructors can be used to construct any subclassable type (due to an incomplete fix for SECURITY-1754 in the 2020-03-09 security advisory) (CVE-2022-43404).
These vulnerabilities allow attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.\n\nThese vulnerabilities have been fixed:
- Script Security Plugin 1184.v85d16b_d851b_3 and Pipeline: Groovy Plugin 2803.v1a_f77ffcc773 intercept Groovy casts performed implicitly by the Groovy language runtime (CVE-2022-43401 in Script Security Plugin and CVE-2022-43402 in Pipeline: Groovy Plugin).
- Script Security Plugin 1184.v85d16b_d851b_3 intercepts per-element casts when casting array-like values to array types (CVE-2022-43403).
- Script Security Plugin 1184.v85d16b_d851b_3 rejects improper calls to sandbox-generated synthetic constructors (CVE-2022-43404).
Both plugins, Script Security Plugin and Pipeline: Groovy Plugin must be updated simultaneously. While Script Security Plugin could be updated independently, doing so would cause errors in Pipeline: Groovy Plugin due to an incompatible API change.
{ affected: [ { database_specific: { last_known_affected_version_range: "< 1184.v85d16b", }, package: { ecosystem: "Maven", name: "org.jenkins-ci.plugins:script-security", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "1184.v85d16b_d851b_3", }, ], type: "ECOSYSTEM", }, ], }, { database_specific: { last_known_affected_version_range: "<= 2802.v5ea", }, package: { ecosystem: "Maven", name: "org.jenkins-ci.plugins.workflow:workflow-cps", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "2803.v1a_f77ffcc773", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2022-43401", ], database_specific: { cwe_ids: [ "CWE-693", ], github_reviewed: true, github_reviewed_at: "2022-10-19T22:04:01Z", nvd_published_at: "2022-10-19T16:15:00Z", severity: "HIGH", }, details: "Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call is to be allowed.\n\nMultiple sandbox bypass vulnerabilities exist in Script Security Plugin and Pipeline: Groovy Plugin:\n\n- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier and in Pipeline: Groovy Plugin 2802.v5ea_628154b_c2 and earlier, various casts performed implicitly by the Groovy language runtime were not intercepted by the sandbox. This includes casts performed when returning values from methods, when assigning local variables, fields, properties, and when defining default arguments for closure, constructor, and method parameters (CVE-2022-43401 in Script Security Plugin and CVE-2022-43402 in Pipeline: Groovy Plugin).\n- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier, when casting an array-like value to an array type, per-element casts to the component type of the array are not intercepted by the sandbox (CVE-2022-43403).\n- In Script Security Plugin 1183.v774b_0b_0a_a_451 and earlier, crafted constructor bodies and calls to sandbox-generated synthetic constructors can be used to construct any subclassable type (due to an incomplete fix for SECURITY-1754 in the [2020-03-09 security advisory](https://www.jenkins.io/security/advisory/2020-03-09/#SECURITY-1754)) (CVE-2022-43404).\n\nThese vulnerabilities allow attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.\\n\\nThese vulnerabilities have been fixed:\n\n- Script Security Plugin 1184.v85d16b_d851b_3 and Pipeline: Groovy Plugin 2803.v1a_f77ffcc773 intercept Groovy casts performed implicitly by the Groovy language runtime (CVE-2022-43401 in Script Security Plugin and CVE-2022-43402 in Pipeline: Groovy Plugin).\n- Script Security Plugin 1184.v85d16b_d851b_3 intercepts per-element casts when casting array-like values to array types (CVE-2022-43403).\n- Script Security Plugin 1184.v85d16b_d851b_3 rejects improper calls to sandbox-generated synthetic constructors (CVE-2022-43404).\n\nBoth plugins, Script Security Plugin and Pipeline: Groovy Plugin must be updated simultaneously. While Script Security Plugin could be updated independently, doing so would cause errors in Pipeline: Groovy Plugin due to an incompatible API change.", id: "GHSA-7vr5-72w7-q6jc", modified: "2022-12-16T16:21:38Z", published: "2022-10-19T19:00:21Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43401", }, { type: "WEB", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2824%20(1)", }, { type: "WEB", url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], summary: "Sandbox bypass vulnerabilities in Jenkins Script Security Plugin and in Pipeline: Groovy Plugin", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.