Jenkins TestNG Results Plugin Stored Cross-site Scripting vulnerability

2023-05-1618:30:16

Google

osv.dev

jenkins

testng

results plugin

cross-site scripting

vulnerability

xss

version 730.732.v959a_3a_a_eb_a_72

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

29.5%

JSON

Jenkins TestNG Results Plugin 730.v4c5283037693 and earlier does not escape several values that are parsed from TestNG report files and displayed on the plugin’s test information pages.

This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide a crafted TestNG report file.

TestNG Results Plugin 730.732.v959a_3a_a_eb_a_72 escapes the affected values that are parsed from TestNG report files.

CPENameOperatorVersion
org.jenkins-ci.plugins:testng-plugineq0.26
org.jenkins-ci.plugins:testng-plugineq1.2
org.jenkins-ci.plugins:testng-plugineq0.28
org.jenkins-ci.plugins:testng-plugineq0.21
org.jenkins-ci.plugins:testng-plugineq0.22
org.jenkins-ci.plugins:testng-plugineq1.1
org.jenkins-ci.plugins:testng-plugineq1.6
org.jenkins-ci.plugins:testng-plugineq1.9.1
org.jenkins-ci.plugins:testng-plugineq555.va0d5f66521e3
org.jenkins-ci.plugins:testng-plugineq0.27

Name	Operator	Version
org.jenkins-ci.plugins:testng-plugin	eq	0.26
org.jenkins-ci.plugins:testng-plugin	eq	1.2
org.jenkins-ci.plugins:testng-plugin	eq	0.28
org.jenkins-ci.plugins:testng-plugin	eq	0.21
org.jenkins-ci.plugins:testng-plugin	eq	0.22
org.jenkins-ci.plugins:testng-plugin	eq	1.1
org.jenkins-ci.plugins:testng-plugin	eq	1.6
org.jenkins-ci.plugins:testng-plugin	eq	1.9.1
org.jenkins-ci.plugins:testng-plugin	eq	555.va0d5f66521e3
org.jenkins-ci.plugins:testng-plugin	eq	0.27