2119648 – (CVE-2022-34170) CVE-2022-34170 Jenkins: Cross-site scripting (XSS) vulnerability in Jenkins LTS

Bug 2119648 (CVE-2022-34170) - CVE-2022-34170 Jenkins: Cross-site scripting (XSS) vulnerability in Jenkins LTS

Summary: CVE-2022-34170 Jenkins: Cross-site scripting (XSS) vulnerability in Jenkins LTS

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2022-34170
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	2119640
TreeView+	depends on / blocked

Reported:	2022-08-19 04:44 UTC by Avinash Hanwate
Modified:	2022-09-02 05:33 UTC (History)
CC List:	1 user (show)
Fixed In Version:	Jenkins 2.356, LTS 2.332.4 and LTS 2.346.1
Clone Of:
Environment:
Last Closed:	2022-09-02 05:33:13 UTC
Embargoed:

Attachments	(Terms of Use)

Description Avinash Hanwate 2022-08-19 04:44:22 UTC

In Jenkins 2.320 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the help icon does not escape the feature name that is part of its tooltip, effectively undoing the fix for SECURITY-1955, resulting in a cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.

https://www.jenkins.io/security/advisory/2022-06-22/#SECURITY-2781

Comment 1 Product Security DevOps Team 2022-09-02 05:33:11 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-34170

Note You need to log in before you can comment on or make changes to this bug.