7.4

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-1003009

GHSA ID

GHSA-2h95-4xw9-m68j

EPSS Score

0.04706%

CWE

CWE-295

Published

5/13/2022

Updated

1/9/2024

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2019-1003009

CVE-2019-1003009:
Jenkins Active Directory Plugin Improper certificate validation with StartTLS

An improper certificate validation vulnerability exists in Jenkins Active Directory Plugin 2.10 and earlier in src/main/java/hudson/plugins/active_directory/ActiveDirectoryDomain.java, src/main/java/hudson/plugins/active_directory/ActiveDirectorySecurityRealm.java, src/main/java/hudson/plugins/active_directory/ActiveDirectoryUnixAuthenticationProvider.java that allows attackers to impersonate the Active Directory server Jenkins connects to for authentication if Jenkins is configured to use StartTLS.

(GitHub Advisory)

7.4

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-1003009

GHSA ID

GHSA-2h95-4xw9-m68j

EPSS Score

0.04706%

CWE

CWE-295

Published

5/13/2022

Updated

1/9/2024

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.jenkins-ci.plugins:active-directory	maven	<= 2.10	2.11

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper TLS certificate validation during StartTLS handshakes. Key evidence includes:

The security advisory explicitly mentions missing certificate validation in StartTLS mode
Commit changes show TLS configuration was moved from realm-level to domain-level
Deprecation of the old bind() method that used hardcoded trust-all behavior
Test cases added to verify TLS configuration migration and validation
The patch introduces domain-specific TLS handling in multiple authentication pathways
Configuration UI changes moved TLS settings to the domain configuration level

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*n improp*r **rti*i**t* v*li**tion vuln*r**ility *xists in J*nkins **tiv* *ir**tory Plu*in *.** *n* **rli*r in sr*/m*in/j*v*/*u*son/plu*ins/**tiv*_*ir**tory/**tiv**ir**tory*om*in.j*v*, sr*/m*in/j*v*/*u*son/plu*ins/**tiv*_*ir**tory/**tiv**ir**toryS**u

Reasoning

T** vuln*r**ility st*ms *rom improp*r TLS **rti*i**t* v*li**tion *urin* St*rtTLS **n*s**k*s. K*y *vi**n** in*lu**s: *. T** s**urity **visory *xpli*itly m*ntions missin* **rti*i**t* v*li**tion in St*rtTLS mo** *. *ommit ***n**s s*ow TLS *on*i*ur*tion

7.4

Basic Information

Concerned about an active attack path?

CVE-2019-1003009: Jenkins Active Directory Plugin Improper certificate validation with StartTLS

7.4

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2019-1003009:
Jenkins Active Directory Plugin Improper certificate validation with StartTLS

Vulnerability Intelligence
Miggo AI