Lucene search

GitHub Advisory DatabaseGHSA-28W4-H56G-GRG7

HistoryAug 24, 2022 - 12:00 a.m.

Cross-site Scripting in Jenkins Job Configuration History Plugin

2022-08-2400:00:28

CWE-79

GitHub Advisory Database

github.com

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

33.5%

JSON

Jenkins Job Configuration History Plugin 1165.v8cc9fd1f4597 and earlier does not escape the job name on the System Configuration History page, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to configure job names.

Affected configurations

Vulners

Node

org.jenkinsci.plugins\Matchjobconfighistory

CPENameOperatorVersion
org.jenkins-ci.plugins:jobconfighistoryle1165.v8cc9fd1f4597

CPE	Name	Operator	Version
	org.jenkins-ci.plugins:jobconfighistory	le	1165.v8cc9fd1f4597

References

www.openwall.com/lists/oss-security/2022/08/23/2

github.com/advisories/GHSA-28w4-h56g-grg7

github.com/jenkinsci/job-config-history-plugin/commit/c9f255f45b8a6ed008d66be094526adfd80ca035

nvd.nist.gov/vuln/detail/CVE-2022-38664

www.jenkins.io/security/advisory/2022-08-23/#SECURITY-2765