CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-25203

Jenkins Team Views Plugin 0.9.0 and earlier does not escape team names, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Overall/Read permission.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.316

EPSS Ranking 96.5%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://www.jenkins.io/security/advisory/2022-02-15/#SECURITY-2324
https://www.jenkins.io/security/advisory/2022-02-15/#SECURITY-2324

Products affected by CVE-2022-25203

Jenkins » Team Views » Version: 0.9.0

cpe:2.3:a:jenkins:team_views:0.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-25203

Products

Pricing

Contact Us