CVE-2012-0325 : Détail

CVE-2012-0325

Cross-site Scripting
A03-Injection
0.22%V3
Network
2012-03-09
10h00 +00:00
2018-01-10
19h57 +00:00
CVE.org
NVD
Notifications pour un CVE
Restez informé de toutes modifications pour un CVE spécifique.
Gestion des notifications

Descriptions du CVE

Cross-site scripting (XSS) vulnerability in Jenkins before 1.454, Jenkins LTS before 1.424.5, and Jenkins Enterprise 1.400.x before 1.400.0.13 and 1.424.x before 1.424.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0324.

Informations du CVE

Faiblesses connexes

CWE-ID Nom de la faiblesse Source
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Métriques

Métriques Score Gravité CVSS Vecteur Source
V2 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N [email protected]

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

Score EPSS

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

Percentile EPSS

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Cloudbees>>Jenkins >> Version To (including) 1.453

Jenkins>>Jenkins >> Version 1.301

Jenkins>>Jenkins >> Version 1.302

Jenkins>>Jenkins >> Version 1.303

Jenkins>>Jenkins >> Version 1.304

Jenkins>>Jenkins >> Version 1.305

Jenkins>>Jenkins >> Version 1.306

Jenkins>>Jenkins >> Version 1.307

Jenkins>>Jenkins >> Version 1.308

Jenkins>>Jenkins >> Version 1.309

Jenkins>>Jenkins >> Version 1.310

Jenkins>>Jenkins >> Version 1.311

Jenkins>>Jenkins >> Version 1.312

Jenkins>>Jenkins >> Version 1.313

Jenkins>>Jenkins >> Version 1.314

Jenkins>>Jenkins >> Version 1.315

Jenkins>>Jenkins >> Version 1.316

Jenkins>>Jenkins >> Version 1.317

Jenkins>>Jenkins >> Version 1.318

Jenkins>>Jenkins >> Version 1.319

Jenkins>>Jenkins >> Version 1.320

Jenkins>>Jenkins >> Version 1.321

Jenkins>>Jenkins >> Version 1.322

Jenkins>>Jenkins >> Version 1.323

Jenkins>>Jenkins >> Version 1.324

Jenkins>>Jenkins >> Version 1.325

Jenkins>>Jenkins >> Version 1.326

Jenkins>>Jenkins >> Version 1.327

Jenkins>>Jenkins >> Version 1.328

Jenkins>>Jenkins >> Version 1.329

Jenkins>>Jenkins >> Version 1.330

Jenkins>>Jenkins >> Version 1.331

Jenkins>>Jenkins >> Version 1.332

Jenkins>>Jenkins >> Version 1.333

Jenkins>>Jenkins >> Version 1.334

Jenkins>>Jenkins >> Version 1.335

Jenkins>>Jenkins >> Version 1.336

Jenkins>>Jenkins >> Version 1.337

Jenkins>>Jenkins >> Version 1.338

Jenkins>>Jenkins >> Version 1.339

Jenkins>>Jenkins >> Version 1.340

Jenkins>>Jenkins >> Version 1.341

Jenkins>>Jenkins >> Version 1.342

Jenkins>>Jenkins >> Version 1.343

Jenkins>>Jenkins >> Version 1.344

Jenkins>>Jenkins >> Version 1.345

Jenkins>>Jenkins >> Version 1.346

Jenkins>>Jenkins >> Version 1.347

Jenkins>>Jenkins >> Version 1.348

Jenkins>>Jenkins >> Version 1.349

Jenkins>>Jenkins >> Version 1.350

Jenkins>>Jenkins >> Version 1.351

Jenkins>>Jenkins >> Version 1.352

Jenkins>>Jenkins >> Version 1.353

Jenkins>>Jenkins >> Version 1.354

Jenkins>>Jenkins >> Version 1.355

Jenkins>>Jenkins >> Version 1.356

Jenkins>>Jenkins >> Version 1.357

Jenkins>>Jenkins >> Version 1.358

Jenkins>>Jenkins >> Version 1.359

Jenkins>>Jenkins >> Version 1.360

Jenkins>>Jenkins >> Version 1.361

Jenkins>>Jenkins >> Version 1.362

Jenkins>>Jenkins >> Version 1.363

Jenkins>>Jenkins >> Version 1.364

Jenkins>>Jenkins >> Version 1.365

Jenkins>>Jenkins >> Version 1.366

Jenkins>>Jenkins >> Version 1.367

Jenkins>>Jenkins >> Version 1.368

Jenkins>>Jenkins >> Version 1.369

Jenkins>>Jenkins >> Version 1.370

Jenkins>>Jenkins >> Version 1.371

Jenkins>>Jenkins >> Version 1.372

Jenkins>>Jenkins >> Version 1.373

Jenkins>>Jenkins >> Version 1.374

Jenkins>>Jenkins >> Version 1.375

Jenkins>>Jenkins >> Version 1.376

Jenkins>>Jenkins >> Version 1.377

Jenkins>>Jenkins >> Version 1.378

Jenkins>>Jenkins >> Version 1.379

Jenkins>>Jenkins >> Version 1.380

Jenkins>>Jenkins >> Version 1.382

Jenkins>>Jenkins >> Version 1.383

Jenkins>>Jenkins >> Version 1.384

Jenkins>>Jenkins >> Version 1.386

Jenkins>>Jenkins >> Version 1.387

Jenkins>>Jenkins >> Version 1.388

Jenkins>>Jenkins >> Version 1.389

Jenkins>>Jenkins >> Version 1.390

Jenkins>>Jenkins >> Version 1.391

Jenkins>>Jenkins >> Version 1.392

Jenkins>>Jenkins >> Version 1.393

Jenkins>>Jenkins >> Version 1.394

Jenkins>>Jenkins >> Version 1.395

Jenkins>>Jenkins >> Version 1.396

Jenkins>>Jenkins >> Version 1.397

Jenkins>>Jenkins >> Version 1.398

Jenkins>>Jenkins >> Version 1.399

Jenkins>>Jenkins >> Version 1.400

Jenkins>>Jenkins >> Version 1.401

Jenkins>>Jenkins >> Version 1.402

Jenkins>>Jenkins >> Version 1.403

Jenkins>>Jenkins >> Version 1.404

Jenkins>>Jenkins >> Version 1.405

Jenkins>>Jenkins >> Version 1.406

Jenkins>>Jenkins >> Version 1.407

Jenkins>>Jenkins >> Version 1.408

Jenkins>>Jenkins >> Version 1.409

Jenkins>>Jenkins >> Version 1.409.1

Jenkins>>Jenkins >> Version 1.409.2

Jenkins>>Jenkins >> Version 1.410

Jenkins>>Jenkins >> Version 1.411

Jenkins>>Jenkins >> Version 1.412

Jenkins>>Jenkins >> Version 1.413

Jenkins>>Jenkins >> Version 1.414

Jenkins>>Jenkins >> Version 1.415

Jenkins>>Jenkins >> Version 1.416

Jenkins>>Jenkins >> Version 1.417

Jenkins>>Jenkins >> Version 1.418

Jenkins>>Jenkins >> Version 1.419

Jenkins>>Jenkins >> Version 1.420

Jenkins>>Jenkins >> Version 1.421

Jenkins>>Jenkins >> Version 1.422

Jenkins>>Jenkins >> Version 1.423

Jenkins>>Jenkins >> Version 1.424

Jenkins>>Jenkins >> Version 1.425

Jenkins>>Jenkins >> Version 1.426

Jenkins>>Jenkins >> Version 1.427

Jenkins>>Jenkins >> Version 1.428

Jenkins>>Jenkins >> Version 1.429

Jenkins>>Jenkins >> Version 1.430

Jenkins>>Jenkins >> Version 1.431

Jenkins>>Jenkins >> Version 1.432

Jenkins>>Jenkins >> Version 1.433

Jenkins>>Jenkins >> Version 1.434

Jenkins>>Jenkins >> Version 1.435

Jenkins>>Jenkins >> Version 1.436

Jenkins>>Jenkins >> Version 1.437

Configuraton 0

Cloudbees>>Jenkins >> Version 1.400

    Cloudbees>>Jenkins >> Version 1.400.0.12

      Cloudbees>>Jenkins >> Version 1.424

        Cloudbees>>Jenkins >> Version 1.424.5

          Configuraton 0

          Cloudbees>>Jenkins >> Version 1.400

          Cloudbees>>Jenkins >> Version 1.400.0.12

            Références

            http://jvn.jp/en/jp/JVN79950061/index.html
            Tags : third-party-advisory, x_refsource_JVN
            http://www.securityfocus.com/bid/52384
            Tags : vdb-entry, x_refsource_BID
            http://jvndb.jvn.jp/jvndb/JVNDB-2012-000023
            Tags : third-party-advisory, x_refsource_JVNDB