CVE-2023-6147

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-6147
Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access to configure or edit jobs to utilize the plugin and configure potential a rouge endpoint via which it was possible to control response for certain request which could be injected with XXE payloads leading to XXE while processing the response data

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
http://www.openwall.com/lists/oss-security/2024/01/24/6
https://www.qualys.com/security-advisories/ Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:qualys:policy_compliance:*:*:*:*:*:jenkins:*:*
History

24 Jan 2024, 18:15

Type Values Removed Values Added
References
  • () http://www.openwall.com/lists/oss-security/2024/01/24/6 -

12 Jan 2024, 19:40

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 5.7 		v2 : unknown
v3 : 6.5
References () https://www.qualys.com/security-advisories/ - () https://www.qualys.com/security-advisories/ - Vendor Advisory
First Time Qualys
Qualys policy Compliance
CPE cpe:2.3:a:qualys:policy_compliance:*:*:*:*:*:jenkins:*:*

09 Jan 2024, 14:01

Type Values Removed Values Added
Summary
  • (es) Se identificó que Qualys Jenkins Plugin para Policy Compliance anterior a la versión 1.0.5 incluida estaba afectado por un fallo de seguridad, al que le faltaba una verificación de permiso al realizar una verificación de conectividad con Qualys Cloud Services. Esto permitió a cualquier usuario con acceso de inicio de sesión configurar o editar jobs para utilizar el complemento y configurar un endpoint potencial a través del cual era posible controlar la respuesta para cierta solicitud que podría inyectarse con payloads XXE que conduzcan a XXE mientras se procesan los datos de respuesta.

09 Jan 2024, 08:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-01-09 08:15

Updated : 2024-01-24 18:15

NVD link : CVE-2023-6147

Mitre link : CVE-2023-6147

CVE.ORG link : CVE-2023-6147

JSON object : View

Products Affected

qualys

  • policy_compliance
CWE
CWE-611

Improper Restriction of XML External Entity Reference