Цены Enterprise

CVE-2022-46682

9.8CRITICAL

Jenkins Plot Plugin 2.1.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Опубликовано: 12/12/2022Обновлено: 4/23/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

Jenkins Plot Plugin 2.1.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

ИИ-АнализНа базе ИИ

Затронутые продукты

jenkinsplot

Ссылки

https://www.jenkins.io/security/advisory/2022-12-07/#SECURITY-2940
Vendor Advisory
https://www.jenkins.io/security/advisory/2022-12-07/#SECURITY-2940
Vendor Advisory