10

CVSS Score

3.1

Basic Information

CVE ID

CVE-2022-43402

GHSA ID

GHSA-mqc2-w9r8-mmxm

EPSS Score

0.22024%

CWE

CWE-693

Published

10/19/2022

Updated

10/27/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2022-43402

CVE-2022-43402: Jenkins Pipeline: Groovy Plugin allows sandbox protection bypass and arbitrary code execution

A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Pipeline: Groovy Plugin 2802.v5ea_628154b_c2 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM. Pipeline: Groovy Plugin 2803.v1a_f77ffcc773 intercepts Groovy casts performed implicitly by the Groovy language runtime

(GitHub Advisory)

10

CVSS Score

3.1

Basic Information

CVE ID

CVE-2022-43402

GHSA ID

GHSA-mqc2-w9r8-mmxm

EPSS Score

0.22024%

CWE

CWE-693

Published

10/19/2022

Updated

10/27/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.jenkins-ci.plugins.workflow:workflow-cps	maven	< 2803.v1a	2803.v1a_f77ffcc773

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability centers on missing sandbox checks for Groovy's implicit type casts. The workflow-cps plugin's CPS transformer and Groovy sandbox interceptor are the primary components handling script execution security. The CpsTransformer's sanitization logic and GroovyInterceptor's cast handling would directly process these operations. The patched version explicitly adds cast interception, indicating these were the vulnerable points. While exact patch details aren't provided, the advisory's technical description of intercepting implicit casts aligns with modifications to these core sandbox enforcement mechanisms.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* s*n**ox *yp*ss vuln*r**ility involvin* v*rious **sts p*r*orm** impli*itly *y t** *roovy l*n*u*** runtim* in J*nkins Pip*lin*: *roovy Plu*in ****.v***_*******_** *n* **rli*r *llows *tt**k*rs wit* p*rmission to ***in* *n* run s*n**ox** s*ripts, in*lu

Reasoning

T** vuln*r**ility **nt*rs on missin* s*n**ox ****ks *or *roovy's impli*it typ* **sts. T** work*low-*ps plu*in's *PS tr*ns*orm*r *n* *roovy s*n**ox int*r**ptor *r* t** prim*ry *ompon*nts **n*lin* s*ript *x**ution s**urity. T** *psTr*ns*orm*r's s*nitiz

10

Basic Information

Concerned about an active attack path?

CVE-2022-43402: Jenkins Pipeline: Groovy Plugin allows sandbox protection bypass and arbitrary code execution

10

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI