-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI
JavaJavaMiggo AIRoot Cause AnalysisThe vulnerability stemmed from using Jenkins.getInstance().getLegacyInstanceId() as the salt in the DefaultCrumbIssuer's descriptor constructor. This value was not properly secured and could be accessed by attackers to predict CSRF tokens. The patched commit f53802b replaced this with a HexStringConfidentialKey, which properly handles confidentiality. The constructor is clearly identified as the vulnerable point in the commit diff modifying the salt initialization.
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| org.jenkins-ci.main:jenkins-core | maven | < 1.625.2 | 1.625.2 |
| org.jenkins-ci.main:jenkins-core | maven | >= 1.626, < 1.638 | 1.638 |
Ongoing coverage of React2Shell