Jenkins - Spring Config CVE - CVE Search - CVE Details

Filtered by vendor Jenkins Subscribe

Filtered by product Spring Config

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-46687	1 Jenkins	1 Spring Config	2022-12-12	N/A	5.4 MEDIUM
Jenkins Spring Config Plugin 2.0.0 and earlier does not escape build display names shown on the Spring Config view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to change build display names.

Vulnerabilities (CVE)