CVE-2022-41239

HIGH8.8EPSS 12.4%

Stored XSS vulnerability in Jenkins DotCi Plugin

Published: 9/22/2022Modified: 2/17/2024

Description

DotCi Plugin 2.40.00 and earlier does not escape the GitHub user name parameter provided to commit notifications when displaying them in a build cause. This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to submit crafted commit notifications to the `/githook/` endpoint (see also [SECURITY-2867](https://www.jenkins.io/security/advisory/2022-09-21/#SECURITY-2867)). This vulnerability is only exploitable in Jenkins 2.314 and earlier, LTS 2.303.1 and earlier. See the [LTS upgrade guide](https://www.jenkins.io/doc/upgrade-guide/2.303/#SECURITY-2452).

Affected packages (1)

Maven/com.groupon.jenkins-ci.plugins:DotCifrom 0, <= 2.40.00

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References (5)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-41239
PATCHhttps://github.com/jenkinsci/DotCi
WEBhttps://plugins.jenkins.io/DotCi
WEBhttps://www.jenkins.io/security/advisory/2022-09-21/#SECURITY-2884
WEBhttps://www.jenkins.io/security/plugins/#suspensions