CVE-2019-10300
published 2019-04-18CVE-2019-10300: A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method…
PriorityP337high8CVSS 3.0
AVNACLPRLUIRSUCHIHAH
EPSS
1.35%
68.1th percentile
A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gitlab | gitlab | — | — |
| jenkins | azure_publishersettings_credentials_plugin | — | — |
| jenkins | gitlab | <= 1.5.11 | — |
| jenkins | gitlab_plugin | — | — |
| jenkins | this_allowed_users_able_to_control_the_plugin | — | — |
| jenkins | xebialabs_xl_deploy_plugin | — | — |
| jenkins_project | jenkins_gitlab_plugin | — | — |
CVSS provenance
nvdv3.08.0HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GitLab
CVE-2019-10300: A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation
vendor_gitlab·2019-04-18·CVSS 8.0
CVE-2019-10300 [HIGH] CWE-352 CVE-2019-10300: A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation
CVE-2019-10300: A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Jenkins
Jenkins Security Advisory 2019-04-17
vendor_jenkins·2019-04-17·CVSS 8.0
CVE-2019-10300 [HIGH] Jenkins Security Advisory 2019-04-17
Title: Jenkins Security Advisory 2019-04-17
Jenkins Security Advisory 2019-04-17
Jenkins Security Home
For Administrators
Overview
Terminology
Vulnerabilities and Scoring
Security Advisories
Security Issues
Advisory Schedule
Vulnerabilities in Plugins
How We Fix Security Issues
For Reporters
Reporting Vulnerabilities
Jenkins CNA
For Maintainers
Overview
Vulnerabilities in Plugins
Jenkins Security Team
About
Contributions
This advisory announces vulnerabilities in the following Jenkins deliverables:
Azure PublisherSettings Credentials
Plugin
GitLab
Plugin
jira-ext
Plugin
ontrack Jenkins
Plugin
XebiaLabs XL Deploy
Plugin
Descriptions
CSRF vulnerability and missing per
OSV
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
osv·2022-05-24
CVE-2019-10300 [HIGH] Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
Jenkins GitLab Plugin did not perform permission checks on a method implementing form validation. This allowed users with Overall/Read access to Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Additionally, this form validation method did not require POST requests, resulting in a cross-site request forgery vulnerability.
This form validation method now requires POST requests and Overall/Administer permissions.
GHSA
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
ghsa·2022-05-24
CVE-2019-10300 [HIGH] CWE-352 Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
Jenkins GitLab Plugin Cross-Site Request Forgery vulnerability
Jenkins GitLab Plugin did not perform permission checks on a method implementing form validation. This allowed users with Overall/Read access to Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
Additionally, this form validation method did not require POST requests, resulting in a cross-site request forgery vulnerability.
This form validation method now requires POST requests and Overall/Administer permissions.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/108045https://jenkins.io/security/advisory/2019-04-17/#SECURITY-1357https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0788http://www.securityfocus.com/bid/108045https://jenkins.io/security/advisory/2019-04-17/#SECURITY-1357https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0788
2019-04-18
Published