CVE-2022-25207: CSRF vulnerability in Jenkins Chef Sinatra Plugin allow XXE
8.8
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.22656%
CWE
Published
2/16/2022
Updated
10/27/2023
KEV Status
No
Technology
Java
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
org.jenkins-ci.plugins:sinatra-chef-builder | maven | <= 1.20 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability description explicitly mentions a form validation()
method with three flaws: missing permission check, missing POST requirement (CSRF), and insecure XML parsing (XXE). In Jenkins
plugins, form validation
is typically handled by doCheck*
methods in Descriptor
classes. The combination of these three flaws in a single validation
endpoint matches the described attack vector where low-privileged users can trigger external HTTP
requests and XML parsing via CSRF.