{ "threat_severity" : "Moderate", "public_date" : "2013-12-16T00:00:00Z", "bugzilla" : { "description" : "jenkins: default markup formatter permits offsite-bound forms (SECURITY-88)", "id" : "1044976", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1044976" }, "cvss" : { "cvss_base_score" : "4.7", "cvss_scoring_vector" : "AV:N/AC:L/Au:M/C:P/I:P/A:N", "status" : "verified" }, "cwe" : "CWE-96", "details" : [ "Cross-site scripting (XSS) vulnerability in the default markup formatter in Jenkins 1.523 allows remote attackers to inject arbitrary web script or HTML via the Description field in the user configuration." ], "affected_release" : [ { "product_name" : "Red Hat OpenShift Enterprise 2.1", "release_date" : "2014-10-14T00:00:00Z", "advisory" : "RHBA-2014:1630", "cpe" : "cpe:/a:redhat:openshift:2.0::el6", "package" : "jenkins-0:1.565.3-1.el6op" }, { "product_name" : "Red Hat OpenShift Enterprise 2.1", "release_date" : "2014-10-14T00:00:00Z", "advisory" : "RHBA-2014:1630", "cpe" : "cpe:/a:redhat:openshift:2.0::el6", "package" : "jenkins-plugin-openshift-0:0.6.40.1-0.el6op" }, { "product_name" : "Red Hat OpenShift Enterprise 2.1", "release_date" : "2014-10-14T00:00:00Z", "advisory" : "RHBA-2014:1630", "cpe" : "cpe:/a:redhat:openshift:2.0::el6", "package" : "openshift-origin-cartridge-jenkins-0:1.20.3.5-1.el6op" } ], "package_state" : [ { "product_name" : "OpenShift Enterprise 1", "fix_state" : "Will not fix", "package_name" : "jenkins", "cpe" : "cpe:/a:redhat:openshift:1" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2013-5573\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-5573" ], "name" : "CVE-2013-5573", "mitigation" : { "value" : "'MyspacePolicy' permits\ntag(\"form\", \"action\", ONSITE_OR_OFFSITE_URL, \"method\");\nFix 'MyspacePolicy' by restricting the policy to ONSITE_URL only or perhaps
could be banned entirely.", "lang" : "en:us" }, "csaw" : false }