CVE-2023-50770: 
Java vulnerability analysis and mitigation

CVE-2023-50770 affects the Jenkins OpenId Connect Authentication Plugin versions 2.6 and earlier. The vulnerability was discovered by Steve Marlowe of Cisco ASIG and was publicly disclosed on December 13, 2023. The plugin's anti-lockout feature, which allows administrators to define a local user account for recovery access, stores passwords in a recoverable format (Jenkins Advisory, OSS Security).

The vulnerability has been assigned a CVSS v3.1 Base Score of 6.7 (Medium) with the vector string CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. The issue stems from the plugin's implementation of an anti-lockout feature where administrator-defined local user account passwords are stored in a recoverable format, rather than using secure password hashing (NVD).

The vulnerability allows attackers with access to the Jenkins controller file system to recover the plain text password of the anti-lockout account. Since this account is typically configured with administrative privileges, successful exploitation likely results in the attacker gaining administrator access to Jenkins (Jenkins Advisory).

As of the advisory's publication date, there is no fix available for this vulnerability in the OpenId Connect Authentication Plugin (Jenkins Advisory).