Operations Center Client Plugin 2.222.4.1

1 minute read

RELEASED: Public: 2020-07-15

Security advisory

TBD

Security fixes

  • CloudBees Internal Ticket: [CTR-1646]

  • Fix persistent XSS vulnerability in Connected Masters

    A cross-site scripting (XSS) attack was possible in connected Masters by saving a malicious connected Master display name in operations center.

    With this fix, the JavaScript code was changed to prevent this vulnerability.

New features

None.

Resolved issues

None.

Known issues

None.

Upgrade notes

None.