Description
Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed users to obtain CSRF tokens without an associated web session ID, resulting in CSRF tokens that did not expire and could be used to bypass CSRF protection for the anonymous user.
Remediation
References
https://jenkins.io/security/advisory/2019-08-28/#SECURITY-1491
http://www.openwall.com/lists/oss-security/2019/08/28/4
https://access.redhat.com/errata/RHSA-2019:2789
https://access.redhat.com/errata/RHSA-2019:3144
https://www.oracle.com/security-alerts/cpuapr2022.html
Related Vulnerabilities
CVE-2021-46037 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2019-20365 Vulnerability in maven package org.igniterealtime.openfire:xmppserver
CVE-2022-43405 Vulnerability in maven package io.jenkins.plugins:pipeline-groovy-lib
CVE-2023-50773 Vulnerability in maven package com.zintow:dingding-json-pusher
CVE-2011-1772 Vulnerability in maven package org.apache.struts.xwork:xwork-core