Lucene search

GitHub Advisory DatabaseGHSA-3RRX-364R-6WF6

HistoryDec 12, 2022 - 9:30 a.m.

Cross-site Scripting in Jenkins Spring Config Plugin

2022-12-1209:30:35

CWE-79

GitHub Advisory Database

github.com

jenkins

spring config plugin

cross-site scripting

stored xss

vulnerability

software security

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

33.5%

JSON

Jenkins Spring Config Plugin 2.0.0 and earlier does not escape build display names shown on the Spring Config view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to change build display names. Spring Config Plugin 2.0.1 escapes build display names shown on the Spring Config view.

Affected configurations

Vulners

Node

io.jenkins.plugins\springMatchconfig

CPENameOperatorVersion
io.jenkins.plugins:spring-configlt2.0.1

CPE	Name	Operator	Version
	io.jenkins.plugins:spring-config	lt	2.0.1

References

github.com/advisories/GHSA-3rrx-364r-6wf6

github.com/jenkinsci/spring-config-plugin/commit/89fea88b24f92233ed31050b8e695eb9b502b8c0

nvd.nist.gov/vuln/detail/CVE-2022-46687

www.jenkins.io/security/advisory/2022-12-07/#SECURITY-2814