CVE-2023-37954

A cross-site request forgery (CSRF) vulnerability exists in the Jenkins Rebuilder Plugin version 320.v5a_0933a_e7d61 and earlier [1]. The plugin does not implement standard CSRF protection mechanisms, allowing an attacker to trick an authenticated Jenkins user into unknowingly rebuilding a previous build [2].

To exploit this vulnerability, an attacker must craft a malicious request that, when executed by a victim with Jenkins access, triggers a rebuild action. This can be achieved through social engineering, such as embedding a crafted link in an email or a webpage, leading an authenticated user to inadvertently submit the request [1]. No additional authentication is required beyond the victim's existing session [3].

Successful exploitation enables the attacker to rebuild a previous build. While this does not directly lead to code execution or data exfiltration, it can cause operational disruption or be leveraged in further attacks against the Jenkins environment [1][2].

As of the advisory publication date (2023-07-12), the Jenkins team has acknowledged the vulnerability but notes that no fix has been provided for the Rebuilder Plugin [1][2]. Users are advised to monitor for updates and consider disabling or removing the plugin if not necessary.