Vulnerability CVE-2015-1814 - Russian Vulnerability Scanner Database

Description

The API token-issuing service in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to gain privileges via a "forced API token change" involving anonymous users.

Tags · CWE

CWE-264

CWE-284

CAPEC-19

CAPEC-441

CAPEC-478

CAPEC-479

CAPEC-502

CAPEC-503

CAPEC-536

CAPEC-546

CAPEC-550

CAPEC-551

CAPEC-552

CAPEC-556

CAPEC-558

CAPEC-562

CAPEC-563

CAPEC-564

CAPEC-578

Affected products

Atomic-openshiftHeapsterJenkinsJenkinsJenkinsNodejs-align-textNodejs-ansi-greenNodejs-ansi-wrapNodejs-anymatchNodejs-arr-diffNodejs-arr-flattenNodejs-array-uniqueNodejs-arrifyNodejs-async-eachNodejs-binary-extensionsNodejs-bracesNodejs-capture-stack-traceNodejs-chokidarNodejs-configstoreNodejs-create-error-class

CVSS vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Timeline

2015-01-01

Published

2015-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Authentication

Au: N

None (N)

Confidentiality Impact

C: P

Partial

Integrity Impact

I: P

Partial

Availability Impact

A: P

Partial

Exploit indicators

EPSS

0.023 · p81

Known exploited (KEV)

No

MITRE ATT&CK

Inferred via CAPEC

T1014Rootkit

└ via CAPEC-552 · CWE-284

T1027.009Embedded Payloads

└ via CAPEC-19 · CWE-284

T1037Boot or Logon Initialization Scripts

└ via CAPEC-564 · CWE-284

T1080Taint Shared Content

└ via CAPEC-562 · CWE-284

T1505.005Terminal Services DLL

└ via CAPEC-558 · CWE-284

T1542.003Bootkit

└ via CAPEC-552 · CWE-284

T1543Create or Modify System Process

└ via CAPEC-550 · CWE-284

T1543.001Launch Agent

└ via CAPEC-564 · CWE-284

T1543.003Windows Service

└ via CAPEC-478 · CWE-284

T1543.004Launch Daemon

└ via CAPEC-564 · CWE-284

T1546.001Change Default File Association

└ via CAPEC-556 · CWE-284

T1546.004Unix Shell Configuration Modification

└ via CAPEC-19 · CWE-284

T1546.008Accessibility Features

└ via CAPEC-558 · CWE-284

T1546.016Installer Packages

└ via CAPEC-19 · CWE-284

T1547Boot or Logon Autostart Execution

└ via CAPEC-564 · CWE-284

T1547.006Kernel Modules and Extensions

└ via CAPEC-552 · CWE-284

T1553.004Install Root Certificate

└ via CAPEC-479 · CWE-284

T1556.006Multi-Factor Authentication

└ via CAPEC-578 · CWE-284

T1574.011Services Registry Permissions Weakness

└ via CAPEC-478 · CWE-284

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Debian

Jenkins

Red Hat

Openshift Jenkins Atomic-openshift Openshift-ansible Rubygem-openshift-origin-node Openshift-origin-broker-util Rubygem-openshift-origin-controller Openshift-origin-node-util Openshift-origin-cartridge-jenkins Rhc+131

Jenkins

Product	Vendor	Status
atomic-openshift		Tracked
heapster		Tracked
jenkins		Tracked
jenkins		Tracked
jenkins		Tracked
nodejs-align-text		Tracked
nodejs-ansi-green		Tracked
nodejs-ansi-wrap		Tracked
nodejs-anymatch		Tracked
nodejs-arr-diff		Tracked
nodejs-arr-flatten		Tracked
nodejs-array-unique		Tracked
nodejs-arrify		Tracked
nodejs-async-each		Tracked
nodejs-binary-extensions		Tracked
nodejs-braces		Tracked
nodejs-capture-stack-trace		Tracked
nodejs-chokidar		Tracked
nodejs-configstore		Tracked
nodejs-create-error-class		Tracked

Showing first 20 of 145

Source databases

DEB

CVE

RED

The API token-issuing service in Jenkins before 1.606 and LTS before 1.596.2 allows remote attackers to gain privileges via a "forced API t…