Lucene search

Build Failure Analyzer Security Vulnerabilities - 2020

cve

CVE-2020-2244

Jenkins Build Failure Analyzer Plugin 1.27.0 and earlier does not escape matching text in a form validation response, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers able to provide console output for builds used to test build log indications.

5.4CVSS

5.3AI Score

0.001EPSS

2020-09-01 02:15 PM