Miggo Logo
Miggo Vulnerability Database
CVE-2018-1000112

CVE-2018-1000112:
Incorrect Authorization in Jenkins Mercurial Plugin

5.3

CVSS Score
3.0

Basic Information

CVE ID
CVE-2018-1000112
GHSA ID
GHSA-f9cx-789c-w2mr
EPSS Score
0.16196%
CWE
CWE-863
Published
5/13/2022
Updated
12/18/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.jenkins-ci.plugins:mercurialmaven<= 2.22.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stemmed from MercurialStatus.java inheriting from AbstractModelObject which provided the getSearchUrl method. This created an unprotected /mercurial/search endpoint that bypassed authorization checks. The commit 54b4f82 removed the AbstractModelObject inheritance and the getSearchUrl method, confirming this was the vulnerable entry point. The inherited search functionality allowed attackers to enumerate sensitive information through the unintended endpoint.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*n improp*r *ut*oriz*tion vuln*r**ility *xists in J*nkins M*r*uri*l Plu*in v*rsion *.* *n* **rli*r in M*r*uri*lSt*tus.j*v* t**t *llows *n *tt**k*r wit* n*twork ****ss to o*t*in * list o* no**s *n* us*rs.

Reasoning

T** vuln*r**ility st*mm** *rom M*r*uri*lSt*tus.j*v* in**ritin* *rom **str**tMo**lO*j**t w*i** provi*** t** **tS**r**Url m*t*o*. T*is *r**t** *n unprot**t** /m*r*uri*l/s**r** *n*point t**t *yp*ss** *ut*oriz*tion ****ks. T** *ommit ******* r*mov** t**