ghsa-64r9-x74q-wxmh
Vulnerability from github
Pipeline: Supporting APIs Plugin provides a feature to add hyperlinks, that send POST requests when clicked, to build logs. These links are used by Pipeline: Input Step Plugin to allow users to proceed or abort the build, or by Pipeline: Job Plugin to allow users to forcibly terminate the build after aborting it.
Pipeline: Supporting APIs Plugin 838.va_3a_087b_4055b and earlier does not sanitize or properly encode URLs of these hyperlinks in build logs.
This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to create Pipelines.
Pipeline: Supporting APIs Plugin 839.v35e2736cfd5c properly encodes URLs of these hyperlinks in build logs.
{ affected: [ { package: { ecosystem: "Maven", name: "org.jenkins-ci.plugins.workflow:workflow-support", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "839.v35e2736cfd5c", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2022-43409", ], database_specific: { cwe_ids: [ "CWE-79", ], github_reviewed: true, github_reviewed_at: "2022-10-19T22:22:35Z", nvd_published_at: "2022-10-19T16:15:00Z", severity: "HIGH", }, details: "Pipeline: Supporting APIs Plugin provides a feature to add hyperlinks, that send POST requests when clicked, to build logs. These links are used by Pipeline: Input Step Plugin to allow users to proceed or abort the build, or by Pipeline: Job Plugin to allow users to forcibly terminate the build after aborting it.\n\nPipeline: Supporting APIs Plugin 838.va_3a_087b_4055b and earlier does not sanitize or properly encode URLs of these hyperlinks in build logs.\n\nThis results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to create Pipelines.\n\nPipeline: Supporting APIs Plugin 839.v35e2736cfd5c properly encodes URLs of these hyperlinks in build logs.", id: "GHSA-64r9-x74q-wxmh", modified: "2022-12-16T17:16:06Z", published: "2022-10-19T19:00:22Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-43409", }, { type: "WEB", url: "https://github.com/jenkinsci/workflow-support-plugin/commit/35e2736cfd5c56799eece176328906d92b6a0dd1", }, { type: "PACKAGE", url: "https://github.com/jenkinsci/workflow-support-plugin", }, { type: "WEB", url: "https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2881", }, { type: "WEB", url: "http://www.openwall.com/lists/oss-security/2022/10/19/3", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], summary: "Stored XSS vulnerability in Jenkins Pipeline: Supporting APIs Plugin", }
Log in or create an account to share your comment.
This schema specifies the format of a comment related to a security advisory.
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.