Lucene search
China National Vulnerability DatabaseCNVD-2022-65927HistoryJun 27, 2022 - 12:00 a.m.
Jenkins Cross-Site Scripting Vulnerability (CNVD-2022-65927)
2022-06-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
22.0%
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins versions 2.340 through 2.355 contain a cross-site scripting vulnerability that stems from the tooling of the build button in the list view not escaping the job display name. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Jenkins Jenkins >=2.340, | le | 2.355 |
Related
alpinelinux
alpinelinux
CVE-2022-34173
2022-06-23 17:15:15
osv
osv
Cross-site Scripting vulnerability in Jenkins
2022-06-24 00:00:31
BIT-jenkins-2022-34173
2024-03-06 10:57:32
CVE-2022-34173
2022-06-23 17:15:15
cve
cve
CVE-2022-34173
2022-06-23 17:15:15
nvd
nvd
CVE-2022-34173
2022-06-23 17:15:15
prion
prion
Cross site scripting
2022-06-23 17:15:00
cvelist
cvelist
CVE-2022-34173
2022-06-22 14:40:54
github
github
Cross-site Scripting vulnerability in Jenkins
2022-06-24 00:00:31
redhatcve
redhatcve
CVE-2022-34173
2022-08-19 05:15:02
veracode
veracode
Cross-site Scripting (XSS)
2022-08-20 09:48:13
openvas
openvas
freebsd
freebsd
jenkins -- multiple vulnerabilities
2022-06-22 00:00:00
nessus
nessus
FreeBSD : jenkins -- multiple vulnerabilities (25be46f0-f25d-11ec-b62a-00e081b7aa2d)
2022-06-23 00:00:00
Jenkins plugins Multiple Vulnerabilities (2022-06-22)
2022-07-15 00:00:00