Thoughtworks Gocd vulnerabilities
23 known vulnerabilities affecting thoughtworks/gocd.
Total CVEs
23
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH9MEDIUM11LOW1
Vulnerabilities
Page 1 of 2
CVE-2021-43287P1HIGHCVSS 7.5ExploitedPoCfixed in 21.3.02022-04-14
CVE-2021-43287 [HIGH] CWE-200 CVE-2021-43287: An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which is
An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which is enabled by default, leaks all secrets known to the GoCD server to unauthenticated attackers.
nvd
CVE-2022-39311P2HIGHCVSS 8.8fixed in 21.1.02022-10-14
CVE-2022-39311 [HIGH] CWE-502 CVE-2022-39311: GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release
GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 are vulnerable to remote code execution on the server from a malicious or compromised agent. The Spring RemoteInvocation endpoint exposed agent communication and allowed deseria
nvd
CVE-2022-29184P2HIGHCVSS 8.8fixed in 22.1.02022-05-20
CVE-2022-29184 [HIGH] CWE-77 CVE-2022-29184: GoCD is a continuous delivery server. In GoCD versions prior to 22.1.0, it is possible for existing
GoCD is a continuous delivery server. In GoCD versions prior to 22.1.0, it is possible for existing authenticated users who have permissions to edit or create pipeline materials or pipeline configuration repositories to get remote code execution capability on the GoCD server via configuring a malicious branch name which abuses Mercurial hooks/aliases to
nvd
CVE-2021-43286P3HIGHCVSS 8.8fixed in 21.3.02022-04-14
CVE-2021-43286 [HIGH] CWE-77 CVE-2021-43286: An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker with privileges to create a
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker with privileges to create a new pipeline on a GoCD server can abuse a command-line injection in the Git URL "Test Connection" feature to execute arbitrary code.
nvd
CVE-2024-56320P3HIGHCVSS 8.8fixed in 24.5.02025-01-03
CVE-2024-56320 [HIGH] CWE-285 CVE-2024-56320: GoCD is a continuous deliver server. GoCD versions prior to 24.5.0 are vulnerable to admin privilege
GoCD is a continuous deliver server. GoCD versions prior to 24.5.0 are vulnerable to admin privilege escalation due to improper authorization of access to the admin "Configuration XML" UI feature, and its associated API. A malicious insider/existing authenticated GoCD user with an existing GoCD user account could abuse this vulnerability to access inf
nvd
CVE-2021-43290P3CRITICALCVSS 9.8fixed in 21.3.02022-04-14
CVE-2021-43290 [CRITICAL] CWE-22 CVE-2021-43290: An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD a
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD agent can upload a malicious file into a directory of a GoCD server. They can control the filename but the directory is placed inside of a directory that they can't control.
nvd
CVE-2021-44659P3CRITICALCVSS 9.8v21.3.02021-12-22
CVE-2021-44659 [CRITICAL] CWE-918 CVE-2021-44659: Adding a new pipeline in GoCD server version 21.3.0 has a functionality that could be abused to do a
Adding a new pipeline in GoCD server version 21.3.0 has a functionality that could be abused to do an un-intended action in order to achieve a Server Side Request Forgery (SSRF). NOTE: the vendor's position is that the observed behavior is not a vulnerability, because the product's design allows an admin to configure outbound requests
nvd
CVE-2021-43289P3HIGHCVSS 7.5fixed in 21.3.02022-04-14
CVE-2021-43289 [HIGH] CWE-22 CVE-2021-43289: An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD a
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD agent can upload a malicious file into an arbitrary directory of a GoCD server, but does not control the filename.
nvd
CVE-2024-56322P3HIGHCVSS 7.2≥ 16.7.0, < 24.5.02025-01-03
CVE-2024-56322 [HIGH] CWE-611 CVE-2024-56322: GoCD is a continuous deliver server. GoCD versions 16.7.0 through 24.4.0 (inclusive) can allow GoCD
GoCD is a continuous deliver server. GoCD versions 16.7.0 through 24.4.0 (inclusive) can allow GoCD admins to abuse a hidden/unused configuration repository (pipelines as code) feature to allow XML External Entity (XXE) injection on the GoCD Server which will be executed when GoCD periodically scans configuration repositories for pipeline updates, or i
nvd
CVE-2022-24832P3MEDIUMCVSS 6.8≥ 17.5.0, < 22.1.02022-04-11
CVE-2022-24832 [MEDIUM] CWE-74 CVE-2022-24832: GoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin inc
GoCD is an open source a continuous delivery server. The bundled gocd-ldap-authentication-plugin included with the GoCD Server fails to correctly escape special characters when using the username to construct LDAP queries. While this does not directly allow arbitrary LDAP data exfiltration, it can allow an existing LDAP-authenticated GoCD user with m
nvd
CVE-2024-56324P3HIGHCVSS 7.1fixed in 24.5.02025-01-03
CVE-2024-56324 [HIGH] CWE-611 CVE-2024-56324: GoCD is a continuous deliver server. GoCD versions prior to 24.4.0 can allow GoCD "group admins" to
GoCD is a continuous deliver server. GoCD versions prior to 24.4.0 can allow GoCD "group admins" to abuse ability to edit the raw XML configuration for groups they administer to trigger XML External Entity (XXE) injection on the GoCD server. Theoretically, the XXE vulnerability can result in additional attacks such as SSRF, information disclosure from
nvd
CVE-2021-25924P3HIGHCVSS 8.8≥ 19.6.0, < 21.2.0v19.6.0, 19.7.0, 19.8.0, 19.9.0, 19.10.0, 19.11.0, 19.12.0, 20.1.0, 20.2.0, 20.3.0, 20.4.0, 20.5.0, 20.6.0, 20.7.0, 20.8.0, 20.9.0, 20.10.0, 21.1.02021-04-01
CVE-2021-25924 [HIGH] CWE-352 CVE-2021-25924: In GoCD, versions 19.6.0 to 21.1.0 are vulnerable to Cross-Site Request Forgery due to missing CSRF
In GoCD, versions 19.6.0 to 21.1.0 are vulnerable to Cross-Site Request Forgery due to missing CSRF protection at the `/go/api/config/backup` endpoint. An attacker can trick a victim to click on a malicious link which could change backup configurations or execute system commands in the post_backup_script field.
nvd
CVE-2022-39309P3MEDIUMCVSS 6.5fixed in 21.1.02022-10-14
CVE-2022-39309 [MEDIUM] CWE-200 CVE-2022-39309: GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release
GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decrypt any secure variables/secrets in GoCD configuration to authenticated agents. A malicious/compromised agent may then expose that k
nvd
CVE-2022-39310P3MEDIUMCVSS 6.5fixed in 21.1.02022-10-14
CVE-2022-39310 [MEDIUM] CWE-284 CVE-2022-39310: GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release
GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 can allow one authenticated agent to impersonate another agent, and thus receive work packages for other agents due to broken access control and incorrect validation of agent
nvd
CVE-2022-39308P4MEDIUMCVSS 5.9≥ 19.2.0, < 19.11.02022-10-14
CVE-2022-39308 [MEDIUM] CWE-208 CVE-2022-39308: GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release
GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions from 19.2.0 to 19.10.0 (inclusive) are subject to a timing attack in validation of access tokens due to use of regular string comparison for validation of the token rather than a constant tim
nvd
CVE-2022-29183P4MEDIUMCVSS 6.1≥ 20.2.0, < 21.4.02022-05-20
CVE-2022-29183 [MEDIUM] CWE-79 CVE-2022-29183: GoCD is a continuous delivery server. GoCD versions 20.2.0 until 21.4.0 are vulnerable to reflected
GoCD is a continuous delivery server. GoCD versions 20.2.0 until 21.4.0 are vulnerable to reflected cross-site scripting via abuse of the pipeline comparison function's error handling to render arbitrary HTML into the returned page. This could allow an attacker to trick a victim into executing code which would allow the attacker to operate on, or gain
nvd
CVE-2023-28629P4MEDIUMCVSS 5.4fixed in 23.1.02023-03-27
CVE-2023-28629 [MEDIUM] CWE-79 CVE-2023-28629: GoCD is an open source continuous delivery server. GoCD versions before 23.1.0 are vulnerable to a s
GoCD is an open source continuous delivery server. GoCD versions before 23.1.0 are vulnerable to a stored XSS vulnerability, where pipeline configuration with a malicious pipeline label configuration can affect browser display of pipeline runs generated from that configuration. An attacker that has permissions to configure GoCD pipelines could includ
nvd
CVE-2024-28866P4MEDIUMCVSS 6.1≥ 19.4.0, < 24.1.02024-05-14
CVE-2024-28866 [MEDIUM] CWE-79 CVE-2024-28866: GoCD is a continuous delivery server. GoCD versions from 19.4.0 to 23.5.0 (inclusive) are potentiall
GoCD is a continuous delivery server. GoCD versions from 19.4.0 to 23.5.0 (inclusive) are potentially vulnerable to a reflected cross-site scripting vulnerability on the loading page displayed while GoCD is starting, via abuse of a `redirect_to` query parameter with inadequate validation.
Attackers could theoretically abuse the query parameter to st
nvd
CVE-2021-43288P4MEDIUMCVSS 5.4fixed in 21.3.02022-04-14
CVE-2021-43288 [MEDIUM] CWE-79 CVE-2021-43288: An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker in control of a GoCD Agent c
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker in control of a GoCD Agent can plant malicious JavaScript into a failed Job Report.
nvd
CVE-2022-29182P4MEDIUMCVSS 5.4≥ 19.11.0, ≤ 21.4.02022-05-20
CVE-2022-29182 [MEDIUM] CWE-79 CVE-2022-29182: GoCD is a continuous delivery server. GoCD versions 19.11.0 through 21.4.0 (inclusive) are vulnerabl
GoCD is a continuous delivery server. GoCD versions 19.11.0 through 21.4.0 (inclusive) are vulnerable to a Document Object Model (DOM)-based cross-site scripting attack via a pipeline run's Stage Details > Graphs tab. It is possible for a malicious script on a attacker-hosted site to execute script that will run within the user's browser context and
nvd
1 / 2Next →