CVE-2020-2170 is a vulnerability in Jenkins Rapiddeploy
Published on March 25, 2020
Jenkins RapidDeploy Plugin 4.2 and earlier does not escape package names in the table of packages obtained from a remote server, resulting in a stored XSS vulnerability.
Products Associated with CVE-2020-2170
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-2170 are published in Jenkins Rapiddeploy:
Affected Versions
Jenkins project Jenkins RapidDeploy Plugin:- Version unspecified, <= 4.2 is affected.
Exploit Probability
EPSS
0.23%
Percentile
45.83%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.