[JENKINS:SECURITY-3164] Missing permission check in `miniorange-saml-sp`

Severity Medium

Affected Packages 2

Fixed Packages 2

CVEs 1

miniorange-saml-sp 2.3.0 and earlier does not perform a permission check in an HTTP endpoint.

This allows attackers with Overall/Read permission to download a string representation of the current security realm (Java Object#toString()), which potentially includes sensitive information.

miniorange-saml-sp 2.3.1 requires Overall/Administer permission to access the affected HTTP endpoint, and only allows downloading a string representation if the current security realm is this plugin's.

Package	Affected Version
pkg:maven/org.jenkins-ci.plugins/miniorange-saml-sp	<= 2.3.0
pkg:github/jenkinsci/miniorange-saml-sp-plugin	<= 2.3.0

Package	Fixed Version
pkg:maven/org.jenkins-ci.plugins/miniorange-saml-sp	= 2.3.1
pkg:github/jenkinsci/miniorange-saml-sp-plugin	= 2.3.1

ID

JENKINS:SECURITY-3164

Severity

medium

Published

2023-07-12T00:00:00
(14 months ago)

Modified

2023-07-12T00:00:00
(14 months ago)

Rights

Jenkins Security Team

Other Advisories

MAVEN:GHSA-P4WR-9WFM-F9JW

Source	# ID	Name	URL
Plugin repository		miniorange-saml-sp repository	https://github.com/jenkinsci/miniorange-saml-sp-plugin

Type	Package URL	Namespace	Name / Product	Version
Affected	pkg:maven/org.jenkins-ci.plugins/miniorange-saml-sp	org.jenkins-ci.plugins	miniorange-saml-sp	<= 2.3.0
Fixed	pkg:maven/org.jenkins-ci.plugins/miniorange-saml-sp	org.jenkins-ci.plugins	miniorange-saml-sp	= 2.3.1
Affected	pkg:github/jenkinsci/miniorange-saml-sp-plugin	jenkinsci	miniorange-saml-sp-plugin	<= 2.3.0
Fixed	pkg:github/jenkinsci/miniorange-saml-sp-plugin	jenkinsci	miniorange-saml-sp-plugin	= 2.3.1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date