{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "dateAssigned": "2018-12-28T00:00:00", "datePublic": "2018-10-10T00:00:00", "descriptions": [{"lang": "en", "value": "A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Overall/Read permission to access a specific URL on instances using the built-in Jenkins user database security realm that results in the creation of an ephemeral user record in memory."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-01-14T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"}, {"name": "106532", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/106532"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "DATE_ASSIGNED": "2018-12-28T04:34:37.678236", "ID": "CVE-2018-1000408", "REQUESTER": "ml@beckweb.net", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Overall/Read permission to access a specific URL on instances using the built-in Jenkins user database security realm that results in the creation of an ephemeral user record in memory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128", "refsource": "CONFIRM", "url": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"}, {"name": "106532", "refsource": "BID", "url": "http://www.securityfocus.com/bid/106532"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T12:40:47.039Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"}, {"name": "106532", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/106532"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-1000408", "datePublished": "2019-01-09T23:00:00", "dateReserved": "2019-01-09T00:00:00", "dateUpdated": "2024-08-05T12:40:47.039Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*", "matchCriteriaId": "DEB8AE68-1445-4E28-875B-E50C54385805", "versionEndIncluding": "2.138.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*", "matchCriteriaId": "34B83940-AC68-468C-9A39-456D00CF3C8B", "versionEndIncluding": "2.145", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Overall/Read permission to access a specific URL on instances using the built-in Jenkins user database security realm that results in the creation of an ephemeral user record in memory."}, {"lang": "es", "value": "Una vulnerabilidad de denegaci\u00f3n de servicio (DoS) existe en Jenkins, en sus versiones 2.145 y anteriores, en core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java que permite a los atacantes sin permisos de \"Overall/Read\" acceder a una URL espec\u00edfica en las instancias, utilizando el realm de la seguridad de la base de datos del usuario por defecto que resulte en la creaci\u00f3n de un registro de usuario ef\u00edmero en memoria."}], "id": "CVE-2018-1000408", "lastModified": "2024-11-21T03:40:00.263", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.4, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-01-09T23:29:02.340", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/106532"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/106532"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-enterprise-service-catalog-1:3.11.51-1.git.1671.2d16650.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-0:3.11.51-1.git.0.1560686.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-cluster-autoscaler-0:3.11.51-1.git.0.0aa9fc2.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-descheduler-0:3.11.51-1.git.300.89070e8.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-dockerregistry-0:3.11.51-1.git.446.d29ce0e.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-metrics-server-0:3.11.51-1.git.52.03e3a91.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-node-problem-detector-0:3.11.51-1.git.254.22189b0.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-service-idler-0:3.11.51-1.git.14.813574a.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-web-console-0:3.11.51-1.git.324.0ae64ed.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "cri-o-0:1.11.10-1.rhaos3.11.git42c86f0.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-openshift-oauth-proxy-0:3.11.51-1.git.419.1af74df.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-alertmanager-0:3.11.51-1.git.0.50a0687.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-node_exporter-0:3.11.51-1.git.1063.12dd8be.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-prometheus-0:3.11.51-1.git.5023.0ad933c.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "jenkins-0:2.138.2.1542054911-1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "jenkins-2-plugins-0:3.11.1542061886-1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "kibana-0:5.6.13-1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-ansible-0:3.11.51-2.git.0.51c90a3.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-enterprise-autoheal-0:3.11.51-1.git.219.8ea4275.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-enterprise-cluster-capacity-0:3.11.51-1.git.380.ffa21af.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-monitor-project-lifecycle-0:3.11.51-1.git.59.7b59e29.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}, {"advisory": "RHBA-2018:3743", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-monitor-sample-app-0:3.11.51-1.git.5.f6d0188.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2018-12-12T00:00:00Z"}], "bugzilla": {"description": "jenkins: Ephemeral user record creation", "id": "1642884", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1642884"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.5", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", "status": "verified"}, "cwe": "CWE-400", "details": ["A denial of service vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/security/HudsonPrivateSecurityRealm.java that allows attackers without Overall/Read permission to access a specific URL on instances using the built-in Jenkins user database security realm that results in the creation of an ephemeral user record in memory."], "name": "CVE-2018-1000408", "package_state": [{"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.4", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.4"}, {"cpe": "cpe:/a:redhat:openshift:3.5", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.5"}, {"cpe": "cpe:/a:redhat:openshift:3.6", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.6"}, {"cpe": "cpe:/a:redhat:openshift:3.7", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.7"}, {"cpe": "cpe:/a:redhat:openshift:3.9", "fix_state": "Will not fix", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 3.9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "jenkins", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2018-10-10T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2018-1000408\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-1000408\nhttps://jenkins.io/security/advisory/2018-10-10/#SECURITY-1128"], "threat_severity": "Moderate", "upstream_fix": "jenkins 2.146, jenkins 2.138.2"}