Security Advisory

CVE-2023-32977

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-16 15:59:58

Last updated 2025-01-23 16:06:00

Assigner jenkins

State PUBLISHED

Description

Jenkins Pipeline: Job Plugin does not escape the display name of the build that caused an earlier build to be aborted, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to set build display names immediately.

← Browse all CVEs View on cve.org ↗