Main Vulnerability Database Vulnerabilities #VU69372

#VU69372 Unprotected storage of credentials in Reverse Proxy Auth - CVE-2022-45384

Published: November 16, 2022

Vulnerability identifier: #VU69372

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2022-45384

CWE-ID: CWE-256

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Reverse Proxy Auth

Software vendor:
Jenkins

Description

The vulnerability allows a local user to gain access to other users' credentials.

The vulnerability exists due to application stores the LDAP manager password unencrypted in the global config.xml file on the Jenkins controller as part of its configuration. A local user can view contents of the configuration file and gain access to passwords for 3rd party integration.

Remediation

Install updates from vendor's website.

External links

https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2094