Allele Security Intelligence

ASA-2019-00615 – Jenkins build-metrics Plugin: Reflected Cross-Site Scripting (XSS)

Posted on December 3, 2019December 8, 2019 by Allele Security Intelligence in Alerts

Jenkins build-metrics Plugin does not properly escape the label query parameter, resulting in a Reflected Cross-Site Scripting (XSS) vulnerability.

ASA-2019-00614 – Jenkins Global Post Script Plugin: Missing permission check

Posted on December 3, 2019December 5, 2019 by Allele Security Intelligence in Alerts

Jenkins Global Post Script Plugin does not perform permission checks on a method implementing form validation. This allows users with Overall/Read permission to list the files contained in $JENKINS_HOME/global-post-script that can be used by the plugin.

ASA-2019-00613 – Jenkins Libvirt Slaves Plugin: Users with Overall/Read access could enumerate credential IDs

Posted on December 3, 2019December 5, 2019 by Allele Security Intelligence in Alerts

Libvirt Slaves Plugin provides a list of applicable credential IDs to allow users configuring the plugin to select the one to use. This functionality does not correctly check permissions, allowing any user with Overall/Read permission to get a list of valid credentials IDs. Those can be used as part of an attack to capture the credentials using another vulnerability.

ASA-2019-00612 – Jenkins Libvirt Slaves Plugin: Missing permission checks

Posted on December 3, 2019December 5, 2019 by Allele Security Intelligence in Alerts

Jenkins Libvirt Slaves Plugin does not perform permission checks on a method implementing form validation. This allows users with Overall/Read access to Jenkins to connect to an attacker-specified SSH server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

ASA-2019-00611 – Jenkins Libvirt Slaves Plugin: Cross-Site Request Forgery (CSRF)

Posted on December 3, 2019December 6, 2019 by Allele Security Intelligence in Alerts

The form validation method does not require POST requests, resulting in a Cross-Site Request Forgery vulnerability (CSRF).

ASA-2019-00610 – Jenkins ElasticBox Kubernetes CI/CD Plugin: Users with Overall/Read access could enumerate credential IDs

Posted on December 3, 2019December 6, 2019 by Allele Security Intelligence in Alerts

ElasticBox Jenkins Kubernetes CI/CD Plugin provides a list of applicable credential IDs to allow users configuring the plugin to select the one to use. This functionality does not correctly check permissions, allowing any user with Overall/Read permission to get a list of valid credentials IDs. Those can be used as part of an attack to capture the credentials using another vulnerability.

ASA-2019-00609 – Jenkins ElasticBox Kubernetes CI/CD Plugin: Missing permission checks

Posted on December 3, 2019December 3, 2019 by Allele Security Intelligence in Alerts

Jenkins ElasticBox Kubernetes CI/CD Plugin does not perform permission checks on a method implementing form validation. This allows users with Overall/Read access to Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.

ASA-2019-00608 – Jenkins ElasticBox Kubernetes CI/CD Plugin: Cross-Site Request Forgery (CSRF)

Posted on November 4, 2019December 6, 2019 by Allele Security Intelligence in Alerts

The form validation method does not require POST requests, resulting in a CSRF vulnerability.