8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-52550

GHSA ID

GHSA-mrpr-vr82-x88r

EPSS Score

0.01731%

CWE

CWE-285

Published

11/13/2024

Updated

11/26/2024

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-52550

CVE-2024-52550: Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin

Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a_388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main (Jenkinsfile) script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build whose (Jenkinsfile) script is no longer approved. This allows attackers with Item/Build permission to rebuild a previous build whose (Jenkinsfile) script is no longer approved. Pipeline: Groovy Plugin 3993.v3e20a_37282f8 refuses to rebuild a build whose main (Jenkinsfile) script is unapproved.

(GitHub Advisory)

8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-52550

GHSA ID

GHSA-mrpr-vr82-x88r

EPSS Score

0.01731%

CWE

CWE-285

Published

11/13/2024

Updated

11/26/2024

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.jenkins-ci.plugins.workflow:workflow-cps	maven	< 3993.v3e20a	3993.v3e20a

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from missing re-validation of script approvals during rebuild operations. The primary culprit is ReplayAction#run, which initiates rebuilds without checking current script approval status (CWE-285). CpsFlowExecution#parseScript is implicated because it handles script execution but uses previously approved state rather than re-checking (CWE-354). These inferences align with the advisory's description of the flaw in rebuild authorization checks and the plugin's architecture.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

J*nkins Pip*lin*: *roovy Plu*in ****.v*********_*** *n* **rli*r, *x**pt ****.****.v************ *o*s not ****k w**t**r t** m*in (J*nkins*il*) s*ript *or * r**uilt *uil* is *pprov**, *llowin* *tt**k*rs wit* It*m/*uil* p*rmission to r**uil* * pr*vious

Reasoning

T** vuln*r**ility st*ms *rom missin* r*-v*li**tion o* s*ript *pprov*ls *urin* r**uil* op*r*tions. T** prim*ry *ulprit is `R*pl*y**tion#run`, w*i** initi*t*s r**uil*s wit*out ****kin* *urr*nt s*ript *pprov*l st*tus (*W*-***). `*ps*low*x**ution#p*rs*S*

8

Basic Information

Concerned about an active attack path?

CVE-2024-52550: Rebuilding a run with revoked script approval allowed by Jenkins Pipeline: Groovy Plugin

8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI