Description
The HudsonPrivateSecurityRealm class in Jenkins before 1.600 and LTS before 1.596.1 does not restrict access to reserved names when using the "Jenkins' own user database" setting, which allows remote attackers to gain privileges by creating a reserved name.
Remediation
References
http://rhn.redhat.com/errata/RHSA-2015-1844.html
https://access.redhat.com/errata/RHSA-2016:0070
https://bugzilla.redhat.com/show_bug.cgi?id=1205627
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-02-27
Related Vulnerabilities
CVE-2023-42277 Vulnerability in maven package cn.hutool:hutool-core
CVE-2023-4301 Vulnerability in maven package org.jenkins-ci.plugins:fortify
CVE-2019-10446 Vulnerability in maven package org.jenkins-ci.plugins:vmanager-plugin
CVE-2023-29471 Vulnerability in maven package com.typesafe.akka:akka-stream-kafka_2.13
CVE-2020-2133 Vulnerability in maven package com.applatix.jenkins:applatix