{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-32979", "assignerOrgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", "state": "PUBLISHED", "assignerShortName": "jenkins", "dateReserved": "2023-05-16T10:55:43.518Z", "datePublished": "2023-05-16T16:00:00.471Z", "dateUpdated": "2024-08-02T15:32:46.506Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Jenkins Email Extension Plugin", "vendor": "Jenkins Project", "versions": [{"lessThan": "*", "status": "unaffected", "version": "2.96.1", "versionType": "maven"}, {"lessThan": "2.89.0.*", "status": "unaffected", "version": "2.89.0.2", "versionType": "maven"}]}], "descriptions": [{"lang": "en", "value": "Jenkins Email Extension Plugin does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files in the email-templates/ directory in the Jenkins home directory on the controller file system."}], "providerMetadata": {"orgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", "shortName": "jenkins", "dateUpdated": "2023-10-24T12:49:58.935Z"}, "references": [{"name": "Jenkins Security Advisory 2023-05-16", "tags": ["vendor-advisory"], "url": "https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3088%20(1)"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:32:46.506Z"}, "title": "CVE Program Container", "references": [{"name": "Jenkins Security Advisory 2023-05-16", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3088%20(1)"}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jenkins:email_extension:*:*:*:*:*:jenkins:*:*", "matchCriteriaId": "9535EDB3-7B12-415E-BF46-065A4840C828", "versionEndIncluding": "2.96", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Jenkins Email Extension Plugin does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files in the email-templates/ directory in the Jenkins home directory on the controller file system."}], "id": "CVE-2023-32979", "lastModified": "2023-05-25T00:42:45.070", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-05-16T16:15:10.673", "references": [{"source": "jenkinsci-cert@googlegroups.com", "tags": ["Vendor Advisory"], "url": "https://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3088%20(1)"}], "sourceIdentifier": "jenkinsci-cert@googlegroups.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2023:3625", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "package": "jenkins-2-plugins-0:4.10.1685679861-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2023-06-23T00:00:00Z"}], "bugzilla": {"description": "jenkins-2-plugin: email-ext: Missing permission check in Email Extension Plugin", "id": "2207831", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2207831"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "status": "verified"}, "cwe": "CWE-266", "details": ["Jenkins Email Extension Plugin does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of files in the email-templates/ directory in the Jenkins home directory on the controller file system.", "A flaw was found in the Jenkins Email Extension Plugin. Affected versions of the Jenkins Email Extension Plugin could allow a remote, authenticated attacker to obtain sensitive information caused by improper permission validation. By sending a specially crafted request, an attacker can check for the existence of files in the email-templates/ directory and use this information to launch further attacks against the affected system."], "name": "CVE-2023-32979", "public_date": "2023-05-16T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-32979\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-32979\nhttps://www.jenkins.io/security/advisory/2023-05-16/#SECURITY-3088%20(1)"], "threat_severity": "Moderate", "upstream_fix": "Email Extension Plugin 2.96.1"}