CVE-2023-50770

Published: Dec 13, 2023Modified: Nov 21, 2024

6.7

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: NVD

Description

Jenkins OpenId Connect Authentication Plugin 2.6 and earlier stores a password of a local user account used as an anti-lockout feature in a recoverable format, allowing attackers with access to the Jenkins controller file system to recover the plain text password of that account, likely gaining administrator access to Jenkins.

Affected (1)

Products: Jenkins: Openid

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jenkins Openid	Up to 2.6

Related CWEs

Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

References (4)

http://www.openwall.com/lists/oss-security/2023/12/13/4

Source: jenkinsci-cert@googlegroups.com

Mailing List

https://www.jenkins.io/security/advisory/2023-12-13/#SECURITY-3168

Source: jenkinsci-cert@googlegroups.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2023/12/13/4

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://www.jenkins.io/security/advisory/2023-12-13/#SECURITY-3168

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.