CVE-2021-21616 — Stored XSS vulnerability in Jenkins Active Choices Plugin

Description

Jenkins Active Choices Plugin 2.5.2 and earlier does not escape reference parameter values. This results in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission. Jenkins Active Choices Plugin 2.5.3 escapes reference parameter values.

How to fix CVE-2021-21616

To remediate CVE-2021-21616, upgrade the affected package to a fixed version below.

—upgrade to 2.5.3 or later

Is CVE-2021-21616 being exploited?

Low — EPSS is 2.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 2.5.3

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM4.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

References (5)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2021-21616
PATCHgithub.com/jenkinsci/active-choices-plugin
WEBgithub.com/jenkinsci/active-choices-plugin/commit/d0b768c18bafd812b52fe579def8b14e26033ec9
WEBwww.jenkins.io/security/advisory/2021-02-24/#SECURITY-2192