The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.14, or 2.x prior to 2.332.4.1 or 2.346.1.4. It is, therefore, affected by multiple vulnerabilities, including the following:

  - Jenkins Pipeline: Input Step Plugin 448.v37cea_9a_10a_70 and earlier archives files uploaded for `file`     parameters for Pipeline `input` steps on the controller as part of build metadata, using the parameter     name without sanitization as a relative path inside a build-related directory, allowing attackers able to     configure Pipelines to create or replace arbitrary files on the Jenkins controller file system with     attacker-specified content. (CVE-2022-34177)

  - Jenkins xUnit Plugin 3.0.8 and earlier implements an agent-to-controller message that creates a     user-specified directory if it doesn't exist, and parsing files inside it as test results, allowing     attackers able to control agent processes to create an arbitrary directory on the Jenkins controller or to     obtain test results from existing files in an attacker-specified directory. (CVE-2022-34181)

  - A cross-site request forgery (CSRF) vulnerability in Jenkins EasyQA Plugin 1.0 and earlier allows     attackers to connect to an attacker-specified HTTP server. (CVE-2022-34203)   Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.14 / 2.332.4.1 / 2.346.1.4 Multiple Vulnerabilities (CloudBees Security Advisory 2022-06-22)

critical Nessus Plugin ID 162722

Version 1.3