Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-34172

Disclosure Date: June 23, 2022 (last updated November 03, 2023)
In Jenkins 2.340 through 2.355 (both inclusive) symbol-based icons unescape previously escaped values of 'tooltip' parameters, resulting in a cross-site scripting (XSS) vulnerability.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0