Miggo Logo

CVE-2023-24451: Cisco Spark Notifier Jenkins Plugin contains Missing Authorization

4.3

CVSS Score
3.1

Basic Information

EPSS Score
0.39743%
Published
1/26/2023
Updated
2/2/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.jenkins-ci.plugins:cisco-spark-notifier-pluginmaven<= 1.1.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from missing authorization checks in HTTP endpoints handling credential enumeration. Jenkins plugins typically implement credential dropdown population and validation via methods in the DescriptorImpl class (e.g., doFillItems and doCheck). These methods are common vectors for CWE-862 when lacking @RequirePermission annotations or explicit Jenkins.get().checkPermission() calls. The pattern matches similar credential ID enumeration vulnerabilities in other Jenkins plugins (e.g., Orka, GitHub Pull Request Builder), where form validation/auto-complete endpoints were improperly secured.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* missin* p*rmission ****k in J*nkins *is*o Sp*rk Noti*i*r Plu*in *.*.* *n* **rli*r *llows *tt**k*rs wit* Ov*r*ll/R*** p*rmission to *num*r*t* *r***nti*ls I*s o* *r***nti*ls stor** in J*nkins.

Reasoning

T** vuln*r**ility st*ms *rom missin* *ut*oriz*tion ****ks in *TTP *n*points **n*lin* *r***nti*l *num*r*tion. J*nkins plu*ins typi**lly impl*m*nt *r***nti*l *rop*own popul*tion *n* v*li**tion vi* m*t*o*s in t** **s*riptorImpl *l*ss (*.*., *o*ill*It*ms