CVE-2018-1000194

A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the Jenkins master, bypassing the agent-to-master security subsystem protection.

Published: Jun 5, 2018
Updated: May 9, 2024
CVE: CVE-2018-1000194
GHSA: GHSA-x646-m7x2-gcp7
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.1
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CVSS v2:

Severity: Medium
Score: 5.5
AV:N/AC:L/Au:S/C:P/I:P/A:N

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
jenkins / jenkins	-	2.120.x
jenkins / jenkins	-	2.107.2.x
oracle / communications_cloud_native_core_automated_test_suite	1.9.0	1.9.0.x
org.jenkins-ci.main / jenkins-core	-	2.107.3
org.jenkins-ci.main / jenkins-core	2.108	2.121

https://github.com/jenkinsci/jenkins/commit/5cf0a77d44310523b763698f67d645c1f2427f30
https://jenkins.io/security/advisory/2018-05-09/#SECURITY-788
https://www.oracle.com/security-alerts/cpuapr2022.html

Vulnerability Database

289,599

CVE-2018-1000194