Description

A path traversal vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java that allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary file write on the Jenkins master when scheduling a build.

Remediation

References

CVE-2018-1000406

Related Vulnerabilities

WordPress Plugin Print, PDF, Email by PrintFriendly Multiple Unspecified Vulnerabilities (3.5.2)

LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-7556)

PHP Other Vulnerability (CVE-2015-1352)

WordPress Plugin Woocommerce CSV importer Arbitrary File Deletion (3.3.6)

Oracle Database Server CVE-2015-2586 Vulnerability (CVE-2015-2586)

Severity

Medium

Classification

CVE-2018-1000406 CWE-22 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities