CVE-2019-16564 is a vulnerability in Jenkins Pipeline Aggregator View
Published on December 17, 2019

Jenkins Pipeline Aggregator View Plugin 1.8 and earlier does not escape information shown on its view, resulting in a stored XSS vulnerability exploitable by attackers able to affects view content such as job display name or pipeline stage names.

NVD

Products Associated with CVE-2019-16564

Want to know whenever a new CVE is published for Jenkins Pipeline Aggregator View? stack.watch will email you.

Jenkins Pipeline Aggregator View

Affected Versions

Jenkins project Jenkins Pipeline Aggregator View Plugin:

Version unspecified, <= 1.8 is affected.

Exploit Probability

EPSS

0.23%

Percentile

45.83%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-16564 is a vulnerability in Jenkins Pipeline Aggregator ViewPublished on December 17, 2019

Products Associated with CVE-2019-16564

Affected Versions

Exploit Probability

CVE-2019-16564 is a vulnerability in Jenkins Pipeline Aggregator View
Published on December 17, 2019