CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2170

Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.2%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2020-2170

Jenkins » Rapiddeploy » Version: 1.1

cpe:2.3:a:jenkins:rapiddeploy:1.1
Jenkins » Rapiddeploy » Version: 2.1

cpe:2.3:a:jenkins:rapiddeploy:2.1
Jenkins » Rapiddeploy » Version: 3.0

cpe:2.3:a:jenkins:rapiddeploy:3.0
Jenkins » Rapiddeploy » Version: 3.1

cpe:2.3:a:jenkins:rapiddeploy:3.1
Jenkins » Rapiddeploy » Version: 3.10

cpe:2.3:a:jenkins:rapiddeploy:3.10
Jenkins » Rapiddeploy » Version: 3.11

cpe:2.3:a:jenkins:rapiddeploy:3.11
Jenkins » Rapiddeploy » Version: 3.2

cpe:2.3:a:jenkins:rapiddeploy:3.2
Jenkins » Rapiddeploy » Version: 3.3

cpe:2.3:a:jenkins:rapiddeploy:3.3
Jenkins » Rapiddeploy » Version: 3.4

cpe:2.3:a:jenkins:rapiddeploy:3.4
Jenkins » Rapiddeploy » Version: 3.5

cpe:2.3:a:jenkins:rapiddeploy:3.5
Jenkins » Rapiddeploy » Version: 3.6

cpe:2.3:a:jenkins:rapiddeploy:3.6
Jenkins » Rapiddeploy » Version: 3.7

cpe:2.3:a:jenkins:rapiddeploy:3.7
Jenkins » Rapiddeploy » Version: 3.8

cpe:2.3:a:jenkins:rapiddeploy:3.8
Jenkins » Rapiddeploy » Version: 3.9

cpe:2.3:a:jenkins:rapiddeploy:3.9
Jenkins » Rapiddeploy » Version: 4.0

cpe:2.3:a:jenkins:rapiddeploy:4.0
Jenkins » Rapiddeploy » Version: 4.1

cpe:2.3:a:jenkins:rapiddeploy:4.1
Jenkins » Rapiddeploy » Version: 4.2

cpe:2.3:a:jenkins:rapiddeploy:4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2170

Products

Pricing

Contact Us