Цены Enterprise

CVE-2022-45400

9.8CRITICAL

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Опубликовано: 11/15/2022Обновлено: 4/30/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

ИИ-АнализНа базе ИИ

Затронутые продукты

jenkinsjapex

Ссылки

http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2941
Vendor Advisory
http://www.openwall.com/lists/oss-security/2022/11/15/4
Mailing ListThird Party Advisory
https://www.jenkins.io/security/advisory/2022-11-15/#SECURITY-2941
Vendor Advisory