CVE-2023-24430

9.8CRITICAL

Jenkins Semantic Versioning Plugin 1.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Publicado: 1/26/2023Actualizado: 4/2/2025
Ver en NVDVer en MITRE

Descripción

Jenkins Semantic Versioning Plugin 1.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Análisis IAImpulsado por IA

Productos Afectados

jenkinssemantic_versioning

Referencias