// For flags

CVE-2017-1000110

 

Severity Score

4.3
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Blue Ocean allows the creation of GitHub organization folders that are set up to scan a GitHub organization for repositories and branches containing a Jenkinsfile, and create corresponding pipelines in Jenkins. It did not properly check the current user's authentication and authorization when configuring existing GitHub organization folders. This allowed users with read access to the GitHub organization folder to reconfigure it, including changing the GitHub API endpoint for the organization folder to an attacker-controlled server to obtain the GitHub access token, if the organization folder was initially created using Blue Ocean.

Blue Ocean permite la creación de carpetas de organización GitHub que se configuran para escanear una organización de GitHub para repositorios y ramas que contengan un archivo Jenkins y crear las pipelines correspondientes en Jenkins. No verifica adecuadamente la autenticación y autorización del usuario actual al configurar las carpetas de organización de GitHub existentes. Esto permite que los usuarios con acceso de lectura a la carpeta de organización GitHub la reconfiguren, incluyendo el cambio del endpoint de la API de GitHub para la carpeta de organización a un servidor controlado por el atacante para obtener el token de acceso a GitHub, si la carpeta de organización se había creado inicialmente con Blue Ocean.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
Single
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-10-03 CVE Reserved
  • 2017-10-04 CVE Published
  • 2024-04-25 EPSS Updated
  • 2024-09-17 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-287: Improper Authentication
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://jenkins.io/security/advisory/2017-08-07 2019-10-03
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Jenkins
Search vendor "Jenkins"
 Blue Ocean
Search vendor "Jenkins" for product "Blue Ocean"
 <= 1.1.5
Search vendor "Jenkins" for product "Blue Ocean" and version " <= 1.1.5"
jenkins
Affected
Jenkins
Search vendor "Jenkins"
 Blue Ocean
Search vendor "Jenkins" for product "Blue Ocean"
 1.2.0
Search vendor "Jenkins" for product "Blue Ocean" and version "1.2.0"
beta-1, jenkins
Affected
Jenkins
Search vendor "Jenkins"
 Blue Ocean
Search vendor "Jenkins" for product "Blue Ocean"
 1.2.0
Search vendor "Jenkins" for product "Blue Ocean" and version "1.2.0"
beta-2, jenkins
Affected
Jenkins
Search vendor "Jenkins"
 Blue Ocean
Search vendor "Jenkins" for product "Blue Ocean"
 1.2.0
Search vendor "Jenkins" for product "Blue Ocean" and version "1.2.0"
beta-3, jenkins
Affected