The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.15, or 2.x prior to 2.346.2.3. It is, therefore, affected by multiple vulnerabilities, including the following:

  - A cross-site request forgery (CSRF) vulnerability in Jenkins Git Plugin 4.11.3 and earlier allows     attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause     them to check out an attacker-specified commit. (CVE-2022-36882)

  - Jenkins Deployer Framework Plugin 85.v1d1888e8c021 and earlier does not restrict the application path of     the applications when configuring a deployment, allowing attackers with Item/Configure permission to     upload arbitrary files from the Jenkins controller file system to the selected service. (CVE-2022-36889)

  - A cross-site request forgery (CSRF) vulnerability in Jenkins Coverity Plugin 1.11.4 and earlier allows     attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained     through another method, capturing credentials stored in Jenkins. (CVE-2022-36920)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.15 / 2.346.2.3 Multiple Vulnerabilities (CloudBees Security Advisory 2022-07-27)

high Nessus Plugin ID 165764

Version 1.2