Description

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.

Remediation

References

http://www.openwall.com/lists/oss-security/2020/03/25/2

https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781

Related Vulnerabilities

CVE-2023-48967 Vulnerability in maven package org.noear:solon.serialization.fury

CVE-2018-1000406 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2021-23446 Vulnerability in npm package handsontable

CVE-2022-34305 Vulnerability in maven package org.apache.tomcat:tomcat

CVE-2020-11988 Vulnerability in maven package org.apache.xmlgraphics:xmlgraphics-commons

Severity

Medium

Classification

CWE-79 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Mailing List Third Party Advisory Vendor Advisory