Security Advisory

CVE-2017-17383

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-12-06 05:00:00

Last updated 2024-08-05 20:51:31

Assigner mitre

State PUBLISHED

Description

Jenkins through 2.93 allows remote authenticated administrators to conduct XSS attacks via a crafted tool name in a job configuration form, as demonstrated by the JDK tool in Jenkins core and the Ant tool in the Ant plugin, aka SECURITY-624.

← Browse all CVEs View on cve.org ↗