vulnerability
Red Hat OpenShift: CVE-2023-32977: jenkins-2-plugin: workflow-job: Stored XSS vulnerability in Pipeline: Job Plugin
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:M/Au:S/C:P/I:P/A:N) | 2023-05-16 | 2023-06-26 | 2025-04-14 |
Severity
5
CVSS
(AV:N/AC:M/Au:S/C:P/I:P/A:N)
Published
2023-05-16
Added
2023-06-26
Modified
2025-04-14
Description
Jenkins Pipeline: Job Plugin does not escape the display name of the build that caused an earlier build to be aborted, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to set build display names immediately.
Solution
linuxrpm-upgrade-jenkins-2-plugins
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.