CVE-2019-10320

Description

Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS#12 certificate.

CVSS Metrics

• v3.0•MEDIUM•Score: 4.3CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
• v2.0•MEDIUM•Score: 4AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.06%• Percentile: 19%

Techniques & Countermeasures

• CWE-538•Insertion of Sensitive Information into Externally-Accessible File or Directory

  The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

Affected Systems

• jenkins project•jenkins credentials plugin

  2.1.18 and earlier

• jenkins•credentials

  ≤ 2.1.18

• org.jenkins-ci.plugins•credentials

  < 2.1.19

References (10)

• http://www.openwall.com/lists/oss-security/2019/05/21/1
• http://seclists.org/fulldisclosure/2019/May/39
• http://www.securityfocus.com/bid/108462
• https://wwws.nightwatchcybersecurity.com/2019/05/23/exploring-the-file-system-via-jenkins-credentials-plugin-vulnerability-cve-2019-10320/
• https://access.redhat.com/errata/RHBA-2019:1605
• https://access.redhat.com/errata/RHSA-2019:1636
• https://jenkins.io/security/advisory/2019-05-21/#SECURITY-1322
• https://nvd.nist.gov/vuln/detail/CVE-2019-10320
• https://github.com/jenkinsci/credentials-plugin/commit/40d0b5cc53c265b601ffaa4469310fad390a80fb
• https://wwws.nightwatchcybersecurity.com/2019/05/23/exploring-the-file-system-via-jenkins-credentials-plugin-vulnerability-cve-2019-10320