ghsa-vr6v-wjfw-rxcr
Vulnerability from github
Published
2022-05-24 17:23
Modified
2022-12-27 23:15
Severity
8.0 (High) - CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Summary
Stored XSS vulnerability in Jenkins Matrix Authorization Strategy Plugin
Details

Matrix Authorization Strategy Plugin 2.6.1 and earlier does not escape user names shown in the permission table. This results in a stored cross-site scripting (XSS) vulnerability. When using project-based matrix authorization, this vulnerability can be exploited by a user with Job/Configure or Agent/Configure permission, otherwise by users with Overall/Administer permission.

Matrix Authorization Strategy Plugin 2.6.2 escapes user names in the permission table.

Show details on source website

To clipboard 

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 2.6.1"
      },
      "package": {
        "ecosystem": "Maven",
        "name": "org.jenkins-ci.plugins:matrix-auth"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.6.2"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2020-2226"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-06-23T23:18:38Z",
    "nvd_published_at": "2020-07-15T18:15:00Z",
    "severity": "HIGH"
  },
  "details": "Matrix Authorization Strategy Plugin 2.6.1 and earlier does not escape user names shown in the permission table. This results in a stored cross-site scripting (XSS) vulnerability. When using project-based matrix authorization, this vulnerability can be exploited by a user with Job/Configure or Agent/Configure permission, otherwise by users with Overall/Administer permission.\n\nMatrix Authorization Strategy Plugin 2.6.2 escapes user names in the permission table.",
  "id": "GHSA-vr6v-wjfw-rxcr",
  "modified": "2022-12-27T23:15:59Z",
  "published": "2022-05-24T17:23:39Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2226"
    },
    {
      "type": "WEB",
      "url": "https://github.com/jenkinsci/matrix-auth-plugin/commit/e263a2feb47594787952a7e0bd1550e849c58b07"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/jenkinsci/matrix-auth-plugin"
    },
    {
      "type": "WEB",
      "url": "https://jenkins.io/security/advisory/2020-07-15/#SECURITY-1909"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2020/07/15/5"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Stored XSS vulnerability in Jenkins Matrix Authorization Strategy Plugin"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.