Preise Enterprise

CVE-2022-45395

9.8CRITICAL

Jenkins CCCC Plugin 0.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Veröffentlicht: 11/15/2022Aktualisiert: 4/30/2025

Auf NVD ansehen Auf MITRE ansehen

Beschreibung

Jenkins CCCC Plugin 0.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

KI-AnalyseKI-gestützt

Betroffene Produkte

jenkinscccc

Referenzen

http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2921
Vendor Advisory
http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2921
Vendor Advisory