CVE-2023-50770 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2023-50770

CVE-2023-50770

December 13, 2023

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining administrator access to Jenkins.

Affected Packages

org.jenkins-ci.plugins:oic-auth (JAVA):

Affected version(s) >=1.0 <=2.6

Fix Suggestion:

Update to version no_fix

Related Resources (7)

https://github.com/jenkinsci/oic-auth-plugin

https://github.com/jenkinsci/oic-auth-plugin/issues/259

https://github.com/jenkinsci/oic-auth-plugin/pull/287

https://nvd.nist.gov/vuln/detail/CVE-2023-50770

http://www.openwall.com/lists/oss-security/2023/12/13/4

https://github.com/jenkins-infra/update-center2/pull/773

https://www.jenkins.io/security/advisory/2023-12-13/#SECURITY-3168

Do you need more information?

CVSS v4

Base Score:

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

HIGH

User Interaction

NONE

Vulnerable System Confidentiality

HIGH

Vulnerable System Integrity

HIGH

Vulnerable System Availability

HIGH

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Weakness Type (CWE)

Insufficiently Protected Credentials

CWE-522

Cleartext Storage of Sensitive Information

CWE-312

EPSS

Base Score:

0.01

Products

Solutions

Resources

Company

Compare

Developer Tools