ghsa-qq38-mxpq-rrpj
Vulnerability from github
Published
2022-05-24 17:23
Modified
2022-12-28 23:44
Severity ?
Summary
Improper authorization of users and groups with the same base name in Jenkins GitLab Authentication Plugin
Details
GitLab Authentication Plugin 1.5 and earlier does not differentiate between user names and hierarchical group names when performing authorization. This allows an attacker with permissions to create groups in GitLab to gain the privileges granted to another user or group.
GitLab Authentication Plugin 1.6 performs user name and group name authorization checks using the appropriate GitLab APIs.
{ "affected": [ { "database_specific": { "last_known_affected_version_range": "\u003c= 1.5" }, "package": { "ecosystem": "Maven", "name": "org.jenkins-ci.plugins:gitlab-oauth" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "1.6" } ], "type": "ECOSYSTEM" } ] } ], "aliases": [ "CVE-2020-2228" ], "database_specific": { "cwe_ids": [ "CWE-863" ], "github_reviewed": true, "github_reviewed_at": "2022-12-28T23:44:46Z", "nvd_published_at": "2020-07-15T18:15:00Z", "severity": "HIGH" }, "details": "GitLab Authentication Plugin 1.5 and earlier does not differentiate between user names and hierarchical group names when performing authorization. This allows an attacker with permissions to create groups in GitLab to gain the privileges granted to another user or group.\n\nGitLab Authentication Plugin 1.6 performs user name and group name authorization checks using the appropriate GitLab APIs.", "id": "GHSA-qq38-mxpq-rrpj", "modified": "2022-12-28T23:44:46Z", "published": "2022-05-24T17:23:39Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2228" }, { "type": "PACKAGE", "url": "https://github.com/jenkinsci/gitlab-oauth-plugin" }, { "type": "WEB", "url": "https://jenkins.io/security/advisory/2020-07-15/#SECURITY-1792" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2020/07/15/5" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ], "summary": "Improper authorization of users and groups with the same base name in Jenkins GitLab Authentication Plugin" }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.