CVE-2018-1000105 — Incorrect Authorization in Jenkins Gerrit Trigger Plugin

Description

An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overall/Read access to retrieve some configuration information about Gerrit in Jenkins.

How to fix CVE-2018-1000105

To remediate CVE-2018-1000105, upgrade the affected package to a fixed version below.

—upgrade to 2.27.5 or later

Is CVE-2018-1000105 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 2.27.5

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM4.3	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References (3)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2018-1000105
WEBgithub.com/jenkinsci/gerrit-trigger-plugin/commit/a222f2d9d1bca3422e6a462a7f587ae325455b80
WEBjenkins.io/security/advisory/2018-02-26/#SECURITY-402