Vulnerabilities > Jenkins > Docker Swarm > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-16 | CVE-2023-40350 | Cross-site Scripting vulnerability in Jenkins Docker Swarm Jenkins Docker Swarm Plugin 1.11 and earlier does not escape values returned from Docker before inserting them into the Docker Swarm Dashboard view, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control responses from Docker. | 5.4 |