CVE-2023-35147

CWE-732 — Incorrect Permission Assignment6 documents6 sources

Severity

6.5MEDIUM

EPSS

0.1%

top 68.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Jenkins Project Jenkins AWS Codecommit Trigger Plugin Jenkins AWS Codecommit Trigger

Timeline

PublishedJun 14

Description

Jenkins AWS CodeCommit Trigger Plugin 3.0.12 and earlier does not restrict the AWS SQS queue name path parameter in an HTTP endpoint, allowing attackers with Item/Read permission to obtain the contents of arbitrary files on the Jenkins controller file system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶Mavenorg.jenkins-ci.plugins:aws-codecommit-trigger3.0.12

▶CVEListV5jenkins_project/jenkins_aws_codecommit_trigger_plugin3.0.12

▶NVDjenkins/aws_codecommit_trigger3.0.12

🔴Vulnerability Details

CVEList

CVE-2023-35147: Jenkins AWS CodeCommit Trigger Plugin 3↗2023-06-14

▶

GHSA

Arbitrary file read vulnerability in Jenkins AWS CodeCommit Trigger Plugin↗2023-06-14

▶

OSV

Arbitrary file read vulnerability in Jenkins AWS CodeCommit Trigger Plugin↗2023-06-14

▶

📋Vendor Advisories

Jenkins

Jenkins Security Advisory 2023-06-14↗2023-06-14

▶

Red Hat

jenkins-2-plugins: aws-codecommit-trigger: Arbitrary file read vulnerability in AWS CodeCommit Trigger Plugin↗2023-06-14

▶