Цены Enterprise

CVE-2022-43415

7.5HIGH

Jenkins REPO Plugin 1.15.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Опубликовано: 10/19/2022Обновлено: 5/9/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

Jenkins REPO Plugin 1.15.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

ИИ-АнализНа базе ИИ

Затронутые продукты

jenkinsrepo

Ссылки

http://www.openwall.com/lists/oss-security/2022/10/19/3
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2337
Vendor Advisory
http://www.openwall.com/lists/oss-security/2022/10/19/3
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-10-19/#SECURITY-2337
Vendor Advisory