Base Score

CRITICAL9.6

CVE-2023-27905

Jenkins update-center2 3.13 and 3.14 renders the required Jenkins core version on plugin download index pages without sanitization, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide a plugin for hosting.

VectorNETWORK

Published Byjenkinsci-cert@googlegroups.com

Published DateMar 10, 2023, 21:15

Affected Versions(1)

org.jenkins-ci:update-center2(Maven)

Introduced3.13

Fixed3.15

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
org.jenkins-ci:update-center2(Maven)	3.13	3.15	N/A

Weakness Type (CWE):CWE-79

CVSS Metrics

Base Score

9.6

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Base Severity

CRITICAL

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH

References

https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3063

Base Score

CRITICAL9.6

Weakness Type (CWE):CWE-79

CVSS Metrics

Base Score

9.6

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Base Severity

CRITICAL

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH