Lucene search
Alpine Linux Development TeamALPINE:CVE-2023-43495HistorySep 20, 2023 - 5:15 p.m.
CVE-2023-43495
2023-09-2017:15:11
Alpine Linux Development Team
security.alpinelinux.org
7
jenkins
stored
xss
vulnerability
unix
0.001 Low
EPSS
Percentile
38.8%
Jenkins 2.423 and earlier, LTS 2.414.1 and earlier does not escape the value of the ‘caption’ constructor parameter of ‘ExpandableDetailsNote’, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control this parameter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.18-community | noarch | jenkins | = 2.387.3-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | = 2.414.3-r0 | UNKNOWN |
Related
osv
osv
Jenkins Cross-site Scripting vulnerability
2023-09-20 18:30:21
CVE-2023-43495
2023-09-20 17:15:11
BIT-jenkins-2023-43495
2024-03-06 10:54:50
cvelist
cvelist
CVE-2023-43495
2023-09-20 16:06:09
cve
cve
CVE-2023-43495
2023-09-20 17:15:11
nvd
nvd
CVE-2023-43495
2023-09-20 17:15:11
redhatcve
redhatcve
CVE-2023-43495
2023-09-22 11:54:51
prion
prion
Cross site scripting
2023-09-20 17:15:00
veracode
veracode
Cross-site Scripting
2023-09-25 07:18:08
github
github
Jenkins Cross-site Scripting vulnerability
2023-09-20 18:30:21
nessus
nessus
freebsd
freebsd
jenkins -- multiple vulnerabilities
2023-09-20 00:00:00
redos
redos
ROS-20240411-08
2024-04-11 00:00:00
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00