Preise Enterprise

CVE-2022-45400

9.8CRITICAL

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Veröffentlicht: 11/15/2022Aktualisiert: 4/30/2025

Auf NVD ansehen Auf MITRE ansehen

Beschreibung

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

KI-AnalyseKI-gestützt

Betroffene Produkte

jenkinsjapex

Referenzen

http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2941
Vendor Advisory
http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2941
Vendor Advisory