Vulnerabilities > Jenkins > Docker Swarm

DATE CVE VULNERABILITY TITLE RISK
2023-08-16 CVE-2023-40350 Cross-site Scripting vulnerability in Jenkins Docker Swarm
Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control responses from Docker.
network
low complexity
jenkins CWE-79
5.4