Miggo Logo
Miggo Vulnerability Database
CVE-2022-30959

CVE-2022-30959: Missing Authorization in Jenkins SSH plugin

7.1

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-30959
GHSA ID
GHSA-7h2j-h5xp-h3gh
EPSS Score
0.73175%
CWE
CWE-862
Published
5/18/2022
Updated
1/28/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.jenkins-ci.plugins:sshmaven<= 2.6.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from an HTTP endpoint handling SSH connection testing that lacks authorization checks. Jenkins plugins typically implement such endpoints via Descriptor classes with do* methods (e.g., doTestConnection). The advisory explicitly states attackers can specify credentials/SSH servers through an endpoint, which matches this pattern. The absence of permission checks (like Jenkins.get().checkPermission(CredentialsProvider.USE_ITEM)) in this method would allow the described exploit. While exact implementation details aren't available, this matches Jenkins plugin vulnerability patterns and the CWE-862 description.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* missin* p*rmission ****k in J*nkins SS* Plu*in *.*.* *n* **rli*r *llows *tt**k*rs wit* Ov*r*ll/R*** p*rmission to *onn**t to *n *tt**k*r-sp**i*i** SS* s*rv*r usin* *tt**k*r-sp**i*i** *r***nti*ls I*s o*t*in** t*rou** *not**r m*t*o*, **pturin* *r***n

Reasoning

T** vuln*r**ility st*ms *rom *n `*TTP` *n*point **n*lin* `SS*` *onn**tion t*stin* t**t l**ks *ut*oriz*tion ****ks. `J*nkins` plu*ins typi**lly impl*m*nt su** *n*points vi* `**s*riptor` *l*ss*s wit* `*o*` m*t*o*s (*.*., `*oT*st*onn**tion`). T** **viso