7.5

CVSS Score

Basic Information

CVE ID

CVE-2022-46684

GHSA ID

GHSA-p86x-75j8-w4xh

EPSS Score

CWE

CWE-79

Published

12/12/2022

Updated

2/1/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2022-46684

CVE-2022-46684:
Stored XSS vulnerability in Jenkins Checkmarx Plugin

heckmarx Plugin processes Checkmarx service API responses and generates HTML reports from them for rendering on the Jenkins UI.

Checkmarx Plugin 2022.3.3 and earlier does not escape values returned from the Checkmarx service API before inserting them into HTML reports. This results in a stored cross-site scripting (XSS) vulnerability.

While Jenkins users without Overall/Administer permission are not allowed to configure the URL to the Checkmarx service, this could still be exploited via man-in-the-middle attacks.

Checkmarx Plugin 2022.4.3 escapes values returned from the Checkmarx service API before inserting them into HTML reports.

(GitHub Advisory)

7.5

CVSS Score

Basic Information

CVE ID

CVE-2022-46684

GHSA ID

GHSA-p86x-75j8-w4xh

EPSS Score

CWE

CWE-79

Published

12/12/2022

Updated

2/1/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
com.checkmarx.jenkins:checkmarx	maven	<= 2022.3.3	2022.4.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The provided vulnerability information indicates that the Checkmarx Plugin failed to escape API response values before inserting them into HTML reports. However, the advisory and references do not include specific code snippets, commit diffs, or file paths that would allow precise identification of the vulnerable functions. While the vulnerability clearly stems from missing output encoding during HTML report generation, the lack of access to the plugin's source code or patch details makes it impossible to pinpoint exact function names and file paths with high confidence. High-confidence identification requires direct evidence from code changes or technical documentation, which is not available here.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

***km*rx Plu*in pro**ss*s ****km*rx s*rvi** *PI r*spons*s *n* **n*r*t*s *TML r*ports *rom t**m *or r*n**rin* on t** J*nkins UI. ****km*rx Plu*in ****.*.* *n* **rli*r *o*s not *s**p* v*lu*s r*turn** *rom t** ****km*rx s*rvi** *PI ***or* ins*rtin* t**

Reasoning

T** provi*** vuln*r**ility in*orm*tion in*i**t*s t**t t** ****km*rx Plu*in **il** to *s**p* *PI r*spons* v*lu*s ***or* ins*rtin* t**m into *TML r*ports. *ow*v*r, t** **visory *n* r***r*n**s *o not in*lu** sp**i*i* *o** snipp*ts, *ommit *i**s, or *il*

7.5

Basic Information

Concerned about an active attack path?

CVE-2022-46684: Stored XSS vulnerability in Jenkins Checkmarx Plugin

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2022-46684:
Stored XSS vulnerability in Jenkins Checkmarx Plugin

Vulnerability Intelligence
Miggo AI