{ "schema_version": "1.4.0", "id": "GHSA-933x-5g7r-773q", "modified": "2022-12-06T16:03:37Z", "published": "2022-09-22T00:00:28Z", "aliases": [ "CVE-2022-41236" ], "summary": "CSRF vulnerability in Jenkins Security Inspector plugin", "details": "Security Inspector Plugin 117.v6eecc36919c2 and earlier does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery (CSRF) vulnerability. This vulnerability allows attackers to replace the generated report stored in a per-session cache and displayed to authorized users at the `…​/report` URL with a report based on attacker-specified report generation options. This could create confusion in users of the plugin who are expecting to see a different result. A security hardening since Jenkins 2.287 and LTS 2.277.2 prevents exploitation of this vulnerability for the _Single user, multiple jobs_ report however, there is no fix at this time. Other report types are still affected.", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N" } ], "affected": [ { "package": { "ecosystem": "Maven", "name": "org.jenkins-ci.plugins:security-inspector" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "last_affected": "17.v6eecc36919c2" } ] } ] } ], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41236" }, { "type": "PACKAGE", "url": "https://github.com/jenkinsci/security-inspector-plugin" }, { "type": "WEB", "url": "https://www.jenkins.io/security/advisory/2022-09-21/#SECURITY-2051" } ], "database_specific": { "cwe_ids": [ "CWE-352" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2022-12-06T16:03:37Z", "nvd_published_at": "2022-09-21T16:15:00Z" } }