Pricing Enterprise

CVE-2022-45386

5.5MEDIUM

Jenkins Violations Plugin 0.7.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Published: 11/15/2022Updated: 4/30/2025

View on NVD View on MITRE

Description

Jenkins Violations Plugin 0.7.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

AI AnalysisPowered by AI

Affected Products

jenkinsviolations

References

http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-766
Vendor Advisory
http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-766
Vendor Advisory