3 matches found
FreeBSD : jenkins -- XSS vulnerability (c2a89e8f-44e9-11ed-9215-00e081b7aa2d)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c2a89e8f-44e9-11ed-9215-00e081b7aa2d advisory. - Jenkins 2.367 through 2.369 both inclusive does not escape tooltips of the l:helpIcon UI component us...
CVE-2022-41224
CVE-2022-41224 affects Jenkins 2.367–2.369 (inclusive). The issue is stored XSS in the l:helpIcon tooltip rendering on the web UI, allowing an attacker who can control tooltip content to execute scripts in a victim's browser. CVSSv3.1 base score 5.4 (MEDIUM), with UI interaction required. Remedia...
jenkins -- XSS vulnerability
Jenkins Security Advisory: Description High SECURITY-2886 / CVE-2022-41224 Jenkins 2.367 through 2.369 both inclusive does not escape tooltips of the l:helpIcon UI component used for some help icons on the Jenkins web UI. This results in a stored cross-site scripting XSS vulnerability exploitable...