GHSA-6g4r-q7qg-6qx6

Source

https://github.com/advisories/GHSA-6g4r-q7qg-6qx6

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-6g4r-q7qg-6qx6/GHSA-6g4r-q7qg-6qx6.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-6g4r-q7qg-6qx6

Aliases

Published

2022-06-24T00:00:31Z

Modified

2023-12-06T01:02:23.085248Z

Severity

8.0 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

Cross-site Scripting vulnerability in Jenkins

Details

Since Jenkins 2.340, the tooltip of the build button in list views supports HTML without escaping the job display name.

This vulnerability is known to be exploitable by attackers with Job/Configure permission.

Jenkins 2.356 addresses this vulnerability. The tooltip of the build button in list views is now escaped.

No Jenkins LTS release is affected by SECURITY-2776 or SECURITY-2780, as these were not present in Jenkins 2.332.x and fixed in the 2.346.x line before 2.346.1.

Database specific

{
    "nvd_published_at": "2022-06-23T17:15:00Z",
    "github_reviewed_at": "2022-12-05T23:51:57Z",
    "severity": "HIGH",
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-22",
        "CWE-79"
    ]
}

References

Affected packages

Maven / org.jenkins-ci.main:jenkins-core

Package

Name: org.jenkins-ci.main:jenkins-core; View open source insights on deps.dev
Purl: pkg:maven/org.jenkins-ci.main/jenkins-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.340

Fixed

2.356

Affected versions

2.*

2.340

2.341

2.342

2.343

2.344

2.345

2.346

2.346.1

2.346.2

2.346.3

2.347

2.348

2.349

2.350

2.354

2.355