CVE-2018-1000997 Information

Description

A path traversal vulnerability exists in the Stapler web framework used by Jenkins 2.145 and earlier LTS 2.138.1 and earlier in core/src/main/java/org/kohsuke/stapler/Facet.java groovy/src/main/java/org/kohsuke/stapler/jelly/groovy/GroovyFacet.java jelly/src/main/java/org/kohsuke/stapler/jelly/JellyFacet.java jruby/src/main/java/org/kohsuke/stapler/jelly/jruby/JRubyFacet.java jsp/src/main/java/org/kohsuke/stapler/jsp/JSPFacet.java that allows attackers to render routable objects using any view in Jenkins exposing internal information about those objects not intended to be viewed such as their toString() representation.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

https://jenkins.io/security/advisory/2018-10-10/SECURITY-867

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

6.5