Опубликовано: 18 нояб. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.1
Описание
Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML in the Violations plugin.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| natty | DNE | |
| oneiric | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | not-affected | 1.466.2+dfsg-0ubuntu1 |
| raring | not-affected | 1.466.2+dfsg-0ubuntu1 |
Показывать по
10
EPSS
Процентиль: 82%
0.01757
Низкий
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.1
nvd
около 6 лет назад
Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers to inject arbitrary web script or HTML in the Violations plugin.
CVSS3: 6.1
debian
около 6 лет назад
Cross-site Scripting (XSS) in Jenkins main before 1.482 and LTS before ...
CVSS3: 6.1
github
почти 4 года назад
Jenkins Violation Plugin allows Cross-Site Scripting (XSS)
EPSS
Процентиль: 82%
0.01757
Низкий
4.3 Medium
CVSS2
6.1 Medium
CVSS3