Miggo Logo
Miggo Vulnerability Database
CVE-2022-41251

CVE-2022-41251: Jenkins Apprenda Plugin has Missing Authorization vulnerability

4.3

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-41251
GHSA ID
GHSA-52v4-wxrx-gjjm
EPSS Score
0.6824%
CWE
CWE-862
Published
9/22/2022
Updated
10/27/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.jenkins-ci.plugins:apprendamaven<= 2.2.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from an unauthenticated HTTP endpoint allowing credential ID enumeration. Jenkins plugins typically expose endpoints via Stapler or JAX-RS routes, and credential enumeration would involve accessing CredentialsProvider API. The absence of a permission check (e.g., Jenkins.get().checkPermission(CredentialsProvider.VIEW)) in the endpoint handler matches the CWE-862 description. The function name/path is inferred from standard Jenkins plugin patterns and the plugin's purpose (Apprenda integration).

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

J*nkins *ppr*n** Plu*in *.*.* *n* **rli*r *o*s not p*r*orm * p*rmission ****k in *n *TTP *n*point. T*is *llows *tt**k*rs wit* Ov*r*ll/R*** p*rmission to *num*r*t* *r***nti*ls I*s o* *r***nti*ls stor** in J*nkins. T*os* **n ** us** *s p*rt o* *n *tt*

Reasoning

T** vuln*r**ility st*ms *rom *n un*ut**nti**t** *TTP *n*point *llowin* *r***nti*l I* *num*r*tion. J*nkins plu*ins typi**lly *xpos* *n*points vi* St*pl*r or J*X-RS rout*s, *n* *r***nti*l *num*r*tion woul* involv* ****ssin* *r***nti*lsProvi**r *PI. T**