{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-29036", "assignerOrgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", "assignerShortName": "jenkins", "dateUpdated": "2024-08-03T06:10:58.182Z", "dateReserved": "2022-04-11T00:00:00", "datePublished": "2022-04-12T00:00:00"}, "containers": {"cna": {"affected": [{"product": "Jenkins Credentials Plugin", "vendor": "Jenkins project", "versions": [{"status": "unaffected", "version": "2.6.1.1"}, {"status": "unaffected", "version": "1074.1076.v39c30cecb_0e2"}, {"status": "unaffected", "version": "1087.1089.v2f1b_9a_b_040e4"}, {"lessThanOrEqual": "1111.v35a_307992395", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Jenkins Credentials Plugin 1111.v35a_307992395 and earlier, except 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, and 2.6.1.1, does not escape the name and description of Credentials parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission."}], "providerMetadata": {"orgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b", "shortName": "jenkins", "dateUpdated": "2023-10-24T14:21:18.906Z"}, "references": [{"url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T06:10:58.182Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:jenkins:credentials:*:*:*:*:*:jenkins:*:*", "matchCriteriaId": "7B7EDECC-46B0-4FD1-A204-BBA2BDD5A9F6", "versionEndExcluding": "2.6.1.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:jenkins:credentials:*:*:*:*:*:jenkins:*:*", "matchCriteriaId": "B107A8F1-F084-4C81-9AF6-1E3C9529D41F", "versionEndExcluding": "1074.1076.v39c30cecb_0e2", "versionStartIncluding": "1055.v1346ba467ba1", "vulnerable": true}, {"criteria": "cpe:2.3:a:jenkins:credentials:*:*:*:*:*:jenkins:*:*", "matchCriteriaId": "D3A6AE76-2635-49F5-8B3E-C8481EBE0374", "versionEndExcluding": "1112.vc87b_7a_3597f6", "versionStartIncluding": "1105.vb_4e24a_c78b_81", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Jenkins Credentials Plugin 1111.v35a_307992395 and earlier, except 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, and 2.6.1.1, does not escape the name and description of Credentials parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission."}, {"lang": "es", "value": "El plugin de credenciales de Jenkins versiones 1111.v35a_307992395 y anteriores, excepto 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, y 2.6.1.1, no escapa del nombre y la descripci\u00f3n de los par\u00e1metros de credenciales en las visualizaciones que muestran par\u00e1metros, resultando en una vulnerabilidad de tipo cross-site scripting (XSS) almacenado que puede ser explotada por atacantes con permiso Item/Configure"}], "id": "CVE-2022-29036", "lastModified": "2023-11-17T17:20:40.917", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-04-12T20:15:09.080", "references": [{"source": "jenkinsci-cert@googlegroups.com", "tags": ["Vendor Advisory"], "url": "https://www.jenkins.io/security/advisory/2022-04-12/#SECURITY-2617"}], "sourceIdentifier": "jenkinsci-cert@googlegroups.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2022:2280", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "jenkins-2-plugins-0:3.11.1650628887-1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2022-05-31T00:00:00Z"}, {"advisory": "RHSA-2022:1600", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "package": "jenkins-2-plugins-0:4.10.1650890594-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2022-05-02T00:00:00Z"}, {"advisory": "RHSA-2022:4947", "cpe": "cpe:/a:redhat:openshift:4.6::el8", "package": "jenkins-2-plugins-0:4.6.1653312933-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.6", "release_date": "2022-06-17T00:00:00Z"}, {"advisory": "RHSA-2022:4909", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "package": "jenkins-2-plugins-0:4.7.1652967082-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2022-06-10T00:00:00Z"}, {"advisory": "RHSA-2022:0871", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "package": "jenkins-2-plugins-0:4.8.1646993358-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2022-03-22T00:00:00Z"}, {"advisory": "RHSA-2022:2205", "cpe": "cpe:/a:redhat:openshift:4.9::el8", "package": "jenkins-2-plugins-0:4.9.1651754460-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.9", "release_date": "2022-05-18T00:00:00Z"}], "bugzilla": {"description": "credentials: Stored XSS vulnerabilities in jenkins plugin", "id": "2074847", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074847"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.4", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "status": "verified"}, "cwe": "CWE-79", "details": ["Jenkins Credentials Plugin 1111.v35a_307992395 and earlier, except 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, and 2.6.1.1, does not escape the name and description of Credentials parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission.", "A flaw was found in the Jenkins credentials plugin. The Jenkins credentials plugin does not escape the name and description of Credentials parameters on views displaying parameters. This issue results in a stored Cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission."], "name": "CVE-2022-29036", "public_date": "2022-04-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-29036\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-29036\nhttps://www.jenkins.io/security/advisory/2022-04-12/"], "threat_severity": "Important", "upstream_fix": "credentials plugin 1112.vc87b_7a_3597f6, credentials plugin 1087.1089.v2f1b_9a_b_040e4, credentials plugin1074.1076.v39c30cecb_0e2, credentials plugin 2.6.1.1"}