CVE-2023-24429 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2023-24429

CVE-2023-24429

January 24, 2023

Jenkins Semantic Versioning Plugin 1.14 and earlier does not restrict execution of an controller/agent message to agents, and implements no limitations about the file path that can be parsed, allowing attackers able to control agent processes to have Jenkins parse a crafted file that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery.

Affected Packages

org.jenkins-ci.plugins:semantic-versioning-plugin (JAVA):

Affected version(s) >=1.0 <1.15

Fix Suggestion:

Update to version 1.15

Related Resources (5)

https://github.com/jenkinsci/semantic-versioning-plugin/commit/c67a89822f86a7d10498ea2783b833052b719086

https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-2973%20%281%29

https://www.jenkins.io/security/advisory/2023-01-24/#SECURITY-2973%20(1)

https://github.com/jenkinsci/semantic-versioning-plugin

https://nvd.nist.gov/vuln/detail/CVE-2023-24429

Do you need more information?

CVSS v4

Base Score:

9.3

Attack Vector

NETWORK

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

HIGH

Vulnerable System Integrity

HIGH

Vulnerable System Availability

HIGH

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Weakness Type (CWE)

Improper Restriction of XML External Entity Reference

CWE-611

EPSS

Base Score:

0.43

Products

Solutions

Resources

Company

Compare

Developer Tools