CVE-2020-2243 is a vulnerability in Jenkins Cadence Vmanager
Published on September 1, 2020

Jenkins Cadence vManager Plugin 3.0.4 and earlier does not escape build descriptions in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Run/Update permission.

NVD

Products Associated with CVE-2020-2243

Want to know whenever a new CVE is published for Jenkins Cadence Vmanager? stack.watch will email you.

Jenkins Cadence Vmanager

Affected Versions

Jenkins project Jenkins Cadence vManager Plugin:

Version unspecified, <= 3.0.4 is affected.

Exploit Probability

EPSS

0.23%

Percentile

45.97%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-2243 is a vulnerability in Jenkins Cadence VmanagerPublished on September 1, 2020

Products Associated with CVE-2020-2243

Affected Versions

Exploit Probability

CVE-2020-2243 is a vulnerability in Jenkins Cadence Vmanager
Published on September 1, 2020