Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/14022?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/14022?format=api", "vulnerability_id": "VCID-6rup-vv6d-eqd8", "summary": "Arbitrary file read vulnerability in Git server Plugin can lead to RCE\nJenkins Git server Plugin uses the [args4j](https://github.com/kohsuke/args4j) library to parse command arguments and options on the Jenkins controller when processing Git commands received via SSH. This command parser has a feature that replaces an @ character followed by a file path in an argument with the file’s contents (`expandAtFiles`). This feature is enabled by default and Git server Plugin 99.va_0826a_b_cdfa_d and earlier does not disable it.\n\nThis allows attackers with Overall/Read permission to read the first two lines of arbitrary files on the Jenkins controller file system using the default character encoding of the Jenkins controller process.\n\nSee [SECURITY-3314](https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314) for further information about the potential impact of being able to read files on the Jenkins controller, as well as the [limitations for reading binary files](https://www.jenkins.io/security/advisory/2024-01-24/#binary-files-note). Note that for this issue, unlike SECURITY-3314, attackers need Overall/Read permission.\n\n## Fix Description\nGit server Plugin 99.101.v720e86326c09 disables the command parser feature that replaces an @ character followed by a file path in an argument with the file’s contents for CLI commands.\n\n## Workaround\nNavigate to Manage Jenkins » Security and ensure that the SSHD Port setting in the SSH Server section is set to Disable. This disables access to Git repositories hosted by Jenkins (and the Jenkins CLI) via SSH.", "aliases": [ { "alias": "CVE-2024-23899" }, { "alias": "GHSA-vph5-2q33-7r9h" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/50111?format=api", "purl": "pkg:maven/org.jenkins-ci.plugins/git-server@99.101.v720e86326c09", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.plugins/git-server@99.101.v720e86326c09" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/93402?format=api", "purl": "pkg:rpm/redhat/jenkins@2.440.3.1716387933-3?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.440.3.1716387933-3%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93406?format=api", "purl": "pkg:rpm/redhat/jenkins@2.440.3.1716445150-3?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.440.3.1716445150-3%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93404?format=api", "purl": "pkg:rpm/redhat/jenkins@2.440.3.1716445200-3?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.440.3.1716445200-3%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93403?format=api", "purl": "pkg:rpm/redhat/jenkins@2.440.3.1718879390-3?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" }, { "vulnerability": "VCID-tsgr-5mwt-jkeh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.440.3.1718879390-3%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93401?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.12.1716445211-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.12.1716445211-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93405?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.13.1716445207-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.13.1716445207-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93407?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.14.1716388016-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.14.1716388016-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/93400?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.15.1718879538-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3cnb-4rqk-zbez" }, { "vulnerability": "VCID-5qhm-ase5-5qhy" }, { "vulnerability": "VCID-6rup-vv6d-eqd8" }, { "vulnerability": "VCID-acdw-t3mm-wbhb" }, { "vulnerability": "VCID-f8ak-21d8-juff" }, { "vulnerability": "VCID-jzn6-bzzf-nugp" }, { "vulnerability": "VCID-qnbx-c635-hqer" }, { "vulnerability": "VCID-s4j7-r6m7-tyey" }, { "vulnerability": "VCID-tsgr-5mwt-jkeh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.15.1718879538-1%3Farch=el8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23899.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-23899.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-23899", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65783", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65729", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65779", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65757", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65746", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65695", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65699", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.6577", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65735", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00494", "scoring_system": "epss", "scoring_elements": "0.65764", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-23899" }, { "reference_url": "https://github.com/jenkinsci/git-server-plugin", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jenkinsci/git-server-plugin" }, { "reference_url": "https://github.com/jenkinsci/git-server-plugin/commit/068ac7cc2574882ef9f5a486e001228a71d881ad", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jenkinsci/git-server-plugin/commit/068ac7cc2574882ef9f5a486e001228a71d881ad" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23899", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23899" }, { "reference_url": "https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3319", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-25T15:28:24Z/" } ], "url": "https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3319" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2024/01/24/6", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-25T15:28:24Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2024/01/24/6" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260183", "reference_id": "2260183", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260183" }, { "reference_url": "https://github.com/advisories/GHSA-vph5-2q33-7r9h", "reference_id": "GHSA-vph5-2q33-7r9h", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-vph5-2q33-7r9h" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3634", "reference_id": "RHSA-2024:3634", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3634" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3635", "reference_id": "RHSA-2024:3635", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3635" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3636", "reference_id": "RHSA-2024:3636", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3636" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:4597", "reference_id": "RHSA-2024:4597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:4597" } ], "weaknesses": [ { "cwe_id": 22, "name": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "description": "The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 88, "name": "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')", "description": "The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string." } ], "exploits": [], "severity_range_score": "6.5 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6rup-vv6d-eqd8" }