1. Home
  2. Security Advisories
  3. Jenkins
  4. JENKINS:SECURITY-1969

[JENKINS:SECURITY-1969] XXE vulnerability in `storable-configs-plugin`

Severity High
Affected Packages 2
CVEs 2
Info Packages References Vulnerabilities

storable-configs-plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

This allows attackers with Item/Configure permission to have Jenkins parse a crafted file that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery.

Additionally, the HTTP endpoint calling the XML parser does not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability.

As of publication of this advisory, there is no fix.

Package Affected Version
pkg:maven/org.jenkins-ci.plugins/storable-configs-plugin <= 1.0
pkg:github/jenkinsci/storable-configs-plugin-plugin <= 1.0
ID
JENKINS:SECURITY-1969
Severity
high
Published
2022-05-17T00:00:00
(2 years ago)
Modified
2022-05-17T00:00:00
(2 years ago)
Rights
Jenkins Security Team
Other Advisories
Source # ID Name URL
Plugin repository storable-configs-plugin repository https://github.com/jenkinsci/storable-configs-plugin-plugin
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:maven/org.jenkins-ci.plugins/storable-configs-plugin org.jenkins-ci.plugins storable-configs-plugin <= 1.0
Affected pkg:github/jenkinsci/storable-configs-plugin-plugin jenkinsci storable-configs-plugin-plugin <= 1.0
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date