CVE-2022-43416
First published: Wed Oct 19 2022(Updated: )
Jenkins Katalon Plugin 1.0.32 and earlier implements an agent/controller message that does not limit where it can be executed and allows invoking Katalon with configurable arguments. It allows attackers able to control agent processes to invoke Katalon on the Jenkins controller with attacker-controlled version, install location, and arguments. Attackers additionally able to create files on the Jenkins controller (e.g., attackers with Item/Configure permission could archive artifacts) can invoke arbitrary OS commands. Katalon Plugin 1.0.33 changes the message type to controller-to-agent, preventing execution on the controller.
Credit: jenkinsci-cert@googlegroups.com jenkinsci-cert@googlegroups.com jenkinsci-cert@googlegroups.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.jenkins-ci.plugins:katalon | <1.0.33 | 1.0.33 |
| Jenkins Katalon | <1.0.33 | |
| Jenkins Jenkins | <=2.303.2 | |
| Jenkins Jenkins | <=2.318 | |
| All of | ||
| Jenkins Katalon | <1.0.33 | |
| Any of | ||
| Jenkins Jenkins | <=2.303.2 | |
| Jenkins Jenkins | <=2.318 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2022-43416
- https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2844
- http://www.openwall.com/lists/oss-security/2022/10/19/3
- https://github.com/jenkinsci/katalon-plugin/commit/0ee4b34afdcba367b547aa0a706cb1c66ac9f45a
- https://github.com/advisories/GHSA-q6f6-6c4p-xph4 (Advisory)
Frequently Asked Questions
What is CVE-2022-43416?
CVE-2022-43416 is a vulnerability in Jenkins Katalon Plugin 1.0.32 and earlier that allows attackers to execute unauthorized commands on the Jenkins controller.
What is the severity of CVE-2022-43416?
CVE-2022-43416 has a severity rating of 8.8 (high).
How does CVE-2022-43416 impact Jenkins Katalon Plugin?
CVE-2022-43416 allows attackers with control over agent processes to execute Katalon on the Jenkins controller with attacker-controlled arguments.
How can I fix CVE-2022-43416?
To fix CVE-2022-43416, update Jenkins Katalon Plugin to version 1.0.33 or later.
Where can I find more information about CVE-2022-43416?
You can find more information about CVE-2022-43416 on the following references: [1] http://www.openwall.com/lists/oss-security/2022/10/19/3 [2] https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2844 [3] https://nvd.nist.gov/vuln/detail/CVE-2022-43416
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/github-advisory
- source/GitHub
- alias/GHSA-q6f6-6c4p-xph4
- alias/CVE-2022-43416
- agent/software-canonical-lookup
- collector/github-advisory-latest
- collector/nvd-api
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- package-manager/maven
- vendor/jenkins
- canonical/jenkins katalon
- canonical/jenkins jenkins
- version/jenkins jenkins/2.303.2
- version/jenkins jenkins/2.318