Skip to main content

Docker Swarm

1 CVEs product

Monthly

CVE-2023-40350 Maven MEDIUM This Month

Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Docker Docker Swarm
NVD
CVSS 3.1
5.4
EPSS
0.5%
EPSS 1% CVSS 5.4
MEDIUM This Month

Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Docker +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy