Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2020-2103

UNKNOWN
Published 2020-01-29T15:15:29
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2020-2103. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Jenkins 2.218 and earlier, LTS 2.204.1 and earlier exposed session identifiers on a user's detail object in the whoAmI diagnostic page.

Available Exploits

Jenkins <=2.218 - Information Disclosure

Jenkins through 2.218, LTS 2.204.1 and earlier, is susceptible to information disclosure. An attacker can access exposed session identifiers on a user detail object in the whoAmI diagnostic page and thus potentially access sensitive information, modify data, and/or execute unauthorized operations.

ID: CVE-2020-2103
Author: c-sh0 Medium

References:

Related News

No news articles found for this CVE.

Affected Products

Jenkins project

Jenkins

Affected Versions:

unspecified unspecified

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed MODERATE

Jenkins Diagnostic page exposed session cookies

GHSA-4jjj-cm7q-v6hr

Advisory Details

Jenkins shows various technical details about the current user on the `/whoAmI` page. In [a previous fix](https://www.jenkins.io/security/advisory/2019-09-25/#SECURITY-1505), the `Cookie` header value containing the HTTP session ID was redacted. However, user metadata shown on this page could also include the HTTP session ID in Jenkins 2.218 and earlier, LTS 2.204.1 and earlier. This allows attackers able to exploit a cross-site scripting vulnerability to obtain the HTTP session ID value from this page. Jenkins 2.219, LTS 2.204.2 no longer prints out the affected user metadata that might contain the HTTP session ID. Additionally, we also redact values of further authentication-related HTTP headers in addition to `Cookie` on this page as a hardening.

Affected Packages

Maven org.jenkins-ci.main:jenkins-core
ECOSYSTEM: ≥2.205 <2.219
Maven org.jenkins-ci.main:jenkins-core
ECOSYSTEM: ≥0 <2.204.2

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-2103
WEB https://github.com/jenkinsci/jenkins/commit/77f36f37f5e3cabd0e4ece16d46d7943454ed15b
WEB https://access.redhat.com/errata/RHBA-2020:0402
WEB https://access.redhat.com/errata/RHBA-2020:0675
WEB https://access.redhat.com/errata/RHSA-2020:0681
WEB https://access.redhat.com/errata/RHSA-2020:0683
PACKAGE https://github.com/jenkinsci/jenkins
WEB https://jenkins.io/security/advisory/2020-01-29/#SECURITY-1695
WEB http://www.openwall.com/lists/oss-security/2020/01/29/1

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: December 20, 2022

References

https://jenkins.io/security/advisory/2020-01-29/#SECURITY-1695
http://www.openwall.com/lists/oss-security/2020/01/29/1
https://access.redhat.com/errata/RHSA-2020:0681
https://access.redhat.com/errata/RHSA-2020:0683
https://access.redhat.com/errata/RHBA-2020:0402
https://access.redhat.com/errata/RHBA-2020:0675
Published: 2020-01-29T15:15:29
Last Modified: 2024-08-04T07:01:39.590Z
Copied to clipboard!