{"id":"CVE-2024-23900","details":"Jenkins Matrix Project Plugin 822.v01b_8c85d16d2 and earlier does not sanitize user-defined axis names of multi-configuration projects, allowing attackers with Item/Configure permission to create or replace any config.xml files on the Jenkins controller file system with content not controllable by the attackers.","aliases":["GHSA-cjgm-9vc9-56mx"],"modified":"2026-04-10T05:09:41.945296Z","published":"2024-01-24T18:15:09.523Z","related":["CGA-7235-w595-g588"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2024/01/24/6"},{"type":"ADVISORY","url":"https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3289"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/jenkinsci/matrix-project-plugin","events":[{"introduced":"0"},{"last_affected":"01b8c85d16d2174adf519916c550b40aac97dee1"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"822.v01b_8c85d16d2"}]}}],"versions":["751.v496d84c0d414","758.v7a_ea_491852f3","771.v574584b_39e60","772.v494f19991984","785.v06b_7f47b_c631","789.v57a_725b_63c79","802.v8013b_40c7edc","808.v5a_b_5f56d6966","818.v7eb_e657db_924","822.v01b_8c85d16d2","matrix-project-1.0","matrix-project-1.0-beta-1","matrix-project-1.1","matrix-project-1.10","matrix-project-1.11","matrix-project-1.12","matrix-project-1.13","matrix-project-1.14","matrix-project-1.15","matrix-project-1.16","matrix-project-1.17","matrix-project-1.18","matrix-project-1.19","matrix-project-1.2","matrix-project-1.3","matrix-project-1.4","matrix-project-1.5","matrix-project-1.6","matrix-project-1.7","matrix-project-1.7.1","matrix-project-1.8","matrix-project-1.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-23900.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"}]}