Authentication Bypass in SonarQube by SonarScanner
CVE-2020-28002

5.3MEDIUM

Key Information:

Vendor: Sonarsource
Status: Sonarqube
Vendor: CVE Published:; 2 November 2020

🔔 Create Sonarsource Vulnerability Alert

What is CVE-2020-28002?

In SonarQube version 8.4.2.36762, a vulnerability exists that allows an external attacker to bypass authentication using the SonarScanner tool. If the -D sonar.login option is passed with an empty value, the system defaults to anonymous authentication. This can lead to unauthorized access, enabling attackers to create and overwrite both public and private projects through the vulnerable /api/ce/submit API endpoint. Organizations using this version of SonarQube should prioritize mitigating this security exposure to protect their project integrity.

References

https://csl.com.co/sonarqube-auditando-al-auditor-parte-ii/

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 2, 2020
Vulnerability Reserved
Oct 30, 2020