The host is installed with Jenkins LTS through 2.375.3 or Jenkins rolling through 2.329 and is prone to a stored cross-site scripting vulnerability. A flaw is present in the application, which fails to handle issues in Apache Commons FileUpload library. Successful exploitation could allow attackers to cause a denial of service (DoS) by sending crafted requests to HTTP endpoints processing file uploads.