CVE-2018-1000106 — Incorrect Authorization in Jenkins Gerrit Trigger Plugin

Description

An improper authorization vulnerability exists in Jenkins Gerrit Trigger Plugin 2.27.4 and earlier in GerritManagement.java, GerritServer.java, and PluginImpl.java that allows an attacker with Overall/Read access to modify the Gerrit configuration in Jenkins.

How to fix CVE-2018-1000106

To remediate CVE-2018-1000106, upgrade the affected package to a fixed version below.

—upgrade to 2.27.5 or later

Is CVE-2018-1000106 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 2.27.5

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.4	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

References (3)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2018-1000106
WEBgithub.com/jenkinsci/gerrit-trigger-plugin/commit/a222f2d9d1bca3422e6a462a7f587ae325455b80
WEBjenkins.io/security/advisory/2018-02-26/#SECURITY-403