Improper Authorization Affecting org.jenkins-ci.plugins:gerrit-trigger package, versions [,2.27.5)
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-JAVA-ORGJENKINSCIPLUGINS-32127
- published 21 Mar 2018
- disclosed 26 Feb 2018
- credit Unknown
Introduced: 26 Feb 2018
CVE-2018-1000106 Open this link in a new tabHow to fix?
Upgrade org.jenkins-ci.plugins:gerrit-trigger
to version 2.27.5 or higher.
Overview
org.jenkins-ci.plugins:gerrit-trigger builds on events from the Gerrit code review system by retrieving events from the Gerrit command "stream-events", so the trigger is pushed from Gerrit instead of pulled as scm-triggers usually are.
Affected versions of this package are vulnerable to Authorization Bypass in GerritManagement.java
, GerritServer.java
, and PluginImpl.java
. It allowed users with Overall/Read permission to Configure Gerrit servers and Connect and disconnect configured Gerrit servers.