CVE-2020-2228 — Improper authorization of users and groups with the same base name in Jenkins Gi

Description

GitLab Authentication Plugin 1.5 and earlier does not differentiate between user names and hierarchical group names when performing authorization. This allows an attacker with permissions to create groups in GitLab to gain the privileges granted to another user or group. GitLab Authentication Plugin 1.6 performs user name and group name authorization checks using the appropriate GitLab APIs.

How to fix CVE-2020-2228

To remediate CVE-2020-2228, upgrade the affected package to a fixed version below.

—upgrade to 1.6 or later

Is CVE-2020-2228 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 1.6

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.1	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References (4)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2020-2228
PATCHgithub.com/jenkinsci/gitlab-oauth-plugin
WEBjenkins.io/security/advisory/2020-07-15/#SECURITY-1792
WEBwww.openwall.com/lists/oss-security/2020/07/15/5