CVE-2020-2304: XEE
First published: Wed Nov 04 2020(Updated: )
A flaw was found in the subversion Jenkins plugin. The XML parser is not properly configured to prevent XML external entity (XXE) attacks allowing an attacker the ability to control an agent process and have Jenkins parse a crafted changelog file that uses external entities for extraction of secrets from the Jenkins controller or server-side request forgery. The highest threat from this vulnerability is to data confidentiality.
Credit: jenkinsci-cert@googlegroups.com jenkinsci-cert@googlegroups.com jenkinsci-cert@googlegroups.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/jenkins | <2-plugins-0:3.11.1612862361-1.el7 | 2-plugins-0:3.11.1612862361-1.el7 |
| redhat/jenkins | <2-plugins-0:4.4.1611203637-1.el7 | 2-plugins-0:4.4.1611203637-1.el7 |
| redhat/jenkins | <2-plugins-0:4.5.1610108899-1.el7 | 2-plugins-0:4.5.1610108899-1.el7 |
| redhat/jenkins | <2-plugins-0:4.6.1609853716-1.el8 | 2-plugins-0:4.6.1609853716-1.el8 |
| Jenkins Subversion | <=2.13.1 | |
| maven/org.jenkins-ci.plugins:subversion | <2.13.2 | 2.13.2 |
Remedy
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2020-2304
- https://www.jenkins.io/security/advisory/2020-11-04/#SECURITY-2145
- http://www.openwall.com/lists/oss-security/2020/11/04/6
- https://github.com/jenkinsci/subversion-plugin/commit/83f24081114a465f88d44fc84180d4d9d02c705d
- https://github.com/advisories/GHSA-vp5f-8jgw-j53c (Advisory)
- https://access.redhat.com/errata/RHSA-2021:0038
- https://access.redhat.com/security/cve/cve-2020-2304
- https://access.redhat.com/errata/RHSA-2021:0034
- https://access.redhat.com/errata/RHSA-2021:0282
- https://access.redhat.com/errata/RHSA-2021:0637
- https://bugzilla.redhat.com/show_bug.cgi?id=1895939
- https://www.cve.org/CVERecord?id=CVE-2020-2304 https://nvd.nist.gov/vuln/detail/CVE-2020-2304 https://www.jenkins.io/security/advisory/2020-11-04/#SECURITY-2145
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is CVE-2020-2304?
CVE-2020-2304 is a vulnerability in the Jenkins Subversion Plugin that allows an attacker to control an agent process and extract secrets.
What is the severity of CVE-2020-2304?
CVE-2020-2304 has a severity score of 6.5, which is considered high.
How does CVE-2020-2304 affect Jenkins Subversion Plugin?
CVE-2020-2304 affects Jenkins Subversion Plugin versions 2.13.1 and earlier.
How can I fix CVE-2020-2304?
To fix CVE-2020-2304, you should update Jenkins Subversion Plugin to version 2.13.2.
Where can I find more information about CVE-2020-2304?
You can find more information about CVE-2020-2304 in the Jenkins security advisory and the Red Hat Security Advisory.
- collector/redhat-cve
- collector/github-advisory-latest
- alias/GHSA-vp5f-8jgw-j53c
- alias/CVE-2020-2304
- collector/github-advisory
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/remedy
- agent/severity
- agent/weakness
- agent/author
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- collector/nvd-api
- package-manager/redhat
- package-manager/maven
- vendor/jenkins
- canonical/jenkins subversion
- version/jenkins subversion/2.13.1