CRITICAL

[io.jenkins.plugin-management:plugin-management-parent-pom] Download of Code Without Integrity Check in Jenkins Plugin Installation Manager

Jenkins Plugin Installation Manager Tool 2.1.3 and earlier does not verify plugin downloads.
References

https://nvd.nist.gov/vuln/detail/CVE-2020-2320
https://www.jenkins.io/security/advisory/2020-12-03/#SECURITY-1856
http://www.openwall.com/lists/oss…

[org.jenkins-ci.plugins:active-directory] Improper Authentication in Jenkins Active Directory Plugin

Jenkins Active Directory Plugin 2.19 and earlier allows attackers to log in as any user if a magic constant is used as the password.
References

https://nvd.nist.gov/vuln/detail/CVE-2020-2299
https://www.jenkins.io/security/advisory/2020-11-04/#SECURIT…

[org.jenkins-ci.plugins:active-directory] Improper Authentication (empty password) in Jenkins Active Directory Plugin

Jenkins Active Directory Plugin prior to 2.20 does not prohibit the use of an empty password in Windows/ADSI mode, which allows attackers to log in to Jenkins as any user depending on the configuration of the Active Directory server.
References

https:…

[org.jenkins-ci.plugins:active-directory] Authentication cache in Active Directory Jenkins Plugin allows logging in with any password

Jenkins Active Directory Plugin 2.19 and earlier allows attackers to log in as any user with any password while a successful authentication of that user is still in the optional cache when using Windows/ADSI mode.
References

https://nvd.nist.gov/vuln/…

[org.jenkins-ci.plugins.workflow:puppet-enterprise-pipeline] Incorrect Authorization in Puppet Enterprise Pipeline Jenkins Plugin

Jenkins Puppet Enterprise Pipeline 1.3.1 and earlier specifies unsafe values in its custom Script Security whitelist, allowing attackers able to execute Script Security protected scripts to execute arbitrary code.
References

https://nvd.nist.gov/vuln/…

[io.fabric8.pipeline:kubernetes-pipeline-steps] Incorrect Authorization in Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin

Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.
References

https://nvd.nist.gov/vuln/detail/CVE-2019-10…

[io.fabric8.pipeline:kubernetes-pipeline-arquillian-steps] Incorrect Authorization in Jenkins Kubernetes :: Pipeline :: Arquillian Steps Plugin

Jenkins Kubernetes :: Pipeline :: Arquillian Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection.
References

https://nvd.nist.gov/vuln/detail/CVE-2019-10…

[org.jenkins-ci.plugins:ontrack] Sandbox bypass in ontrack Jenkins Plugin

A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and earlier allowed attackers with control over ontrack DSL definitions to execute arbitrary code on the Jenkins master JVM.
References

https://nvd.nist.gov/vuln/detail/CVE-2019-10306
https:…

[DotNetCasClient] Jasig Java CAS Client, .NET CAS Client, and phpCAS contain URL parameter injection vulnerability

A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrar…

[org.apache.struts:struts2-core] Remote Code Execution in Apache Struts

XSLTResult allows for the location of a stylesheet being passed as a request parameter. In some circumstances this can be used to inject remotely executable code.
References

https://nvd.nist.gov/vuln/detail/CVE-2016-3082
http://struts.apache.org/docs/…

トピトピニュース

Featured

[github.com/crewjam/saml] crewjam/saml vulnerable to signature bypass via multiple Assertion elements due to improper authentication

[org.jeecgframework.boot:jeecg-boot-common] Jeecg-boot vulnerable to SQL Injection

[electron] Heap buffer overflow in GPU

[wger] wger vulnerable to brute force attempts