Skip to main content

Contrast Continuous Application Security

1 CVEs product

Monthly

CVE-2022-43420 Maven MEDIUM PATCH This Month

Jenkins Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when generating a report, resulting in a stored cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Contrast Continuous Application Security
NVD
CVSS 3.1
5.4
EPSS
0.6%
EPSS 1% CVSS 5.4
MEDIUM PATCH This Month

Jenkins Contrast Continuous Application Security Plugin 3.9 and earlier does not escape data returned from the Contrast service when generating a report, resulting in a stored cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Jenkins Contrast Continuous Application Security
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy