Improper Authorization in Amazon EC2

#VU27614 Improper Authorization in Amazon EC2

Published: 2020-05-07

Vulnerability identifier: #VU27614

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-2188

CWE-ID: CWE-285

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Amazon EC2
Web applications / Modules and components for CMS

Vendor: Jenkins

Description

The vulnerability allows a remote user to bypass authorization checks.

The vulnerability exists due to the affected plugin performs improper permission checks when providing a list of applicable credentials IDs to allow users configuring the plugin to select the one to use. A remote authenticated attacker with Overall/Read permission can get a list of valid credentials IDs.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Amazon EC2: 1.0 - 1.50.1

External links
http://www.openwall.com/lists/oss-security/2020/05/06/3
http://jenkins.io/security/advisory/2020-05-06/#SECURITY-1844

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Jenkins Amazon EC2 plugin