Rewterz Threat Advisory – Multiple Jenkins BearyChat Plugin Vulnerabilities

January 30, 2023

Rewterz Threat Advisory – Multiple Jenkins GitHub Pull Request Builder Plugin Vulnerabilities

January 30, 2023

Rewterz Threat Advisory – Multiple Jenkins JIRA Pipeline Steps Plugin Vulnerabilities

January 30, 2023

Severity

Medium

Analysis Summary

CVE-2023-24440 CVSS:5.3

Jenkins JIRA Pipeline Steps Plugin could allow a local authenticated attacker to obtain sensitive information, caused by the transmission of private key in plain text as part of the global Jenkins configuration form. By sniffing the network traffic, an attacker could exploit this vulnerability to obtain the private key information, and use this information to launch further attacks against the affected system.

CVE-2023-24438 CVSS:4.2

Jenkins JIRA Pipeline Steps Plugin could allow a remote authenticated attacker to bypass security restrictions, caused by not perform permission checks in methods implementing form validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to connect to an attacker-specified HTTP server.

CVE-2023-24437 CVSS:5.4

Jenkins JIRA Pipeline Steps Plugin is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to connect to an attacker-specified URL. An attacker could exploit this vulnerability to perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.

CVE-2023-24439 CVSS:3.3

Jenkins JIRA Pipeline Steps Plugin could allow a local authenticated attacker to obtain sensitive information, caused by the storage of private keys unencrypted in the global configuration file. By gaining access to the configuration files, an attacker could exploit this vulnerability to obtain private keys information, and use this information to launch further attacks against the affected system.

Impact

Security Bypass
Information Disclosure
Unauthorized Access

Indicators Of Compromise

CVE

CVE-2023-24440
CVE-2023-24438
CVE-2023-24437
CVE-2023-24439

Affected Vendors

Jenkins

Affected Products

Jenkins JIRA Pipeline Steps Plugin 2.0.165.v8846cf59f3db

Remediation

Refer to Jenkins Security Advisory for patch, upgrade or suggested workaround information.

Jenkins Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Chinese Cybercrime Group Conducts Large-Scale SMS Phishing Operation – Active IOCs

HelloKitty Ransomware Reemerges with Multiple Platform Attacks – Active IOCs

Hackers Exploiting Router Flaws to Target Enterprise Networks

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – Multiple Jenkins BearyChat Plugin Vulnerabilities

Rewterz Threat Advisory – Multiple Jenkins GitHub Pull Request Builder Plugin Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.