Vulnerability Description
In Jenkins Email Extension Plugin 2.93 and earlier, templates defined inside a folder were not subject to Script Security protection, allowing attackers able to define email templates in folders to bypass the sandbox protection and execute arbitrary code in the context of the Jenkins controller JVM.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jenkins | Email Extension | < 2.93.1 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2023/02/15/4Mailing ListThird Party Advisory
- https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-2939Vendor Advisory
- http://www.openwall.com/lists/oss-security/2023/02/15/4Mailing ListThird Party Advisory
- https://www.jenkins.io/security/advisory/2023-02-15/#SECURITY-2939Vendor Advisory
FAQ
What is CVE-2023-25765?
CVE-2023-25765 is a vulnerability with a CVSS score of 9.9 (CRITICAL). In Jenkins Email Extension Plugin 2.93 and earlier, templates defined inside a folder were not subject to Script Security protection, allowing attackers able to define email templates in folders to by...
How severe is CVE-2023-25765?
CVE-2023-25765 has been rated CRITICAL with a CVSS base score of 9.9/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-25765?
Check the references section above for vendor advisories and patch information. Affected products include: Jenkins Email Extension.