Skip to main content

Checkstyle

2 CVEs product

Monthly

CVE-2019-9658 Maven MEDIUM PATCH This Month

Checkstyle before 8.18 loads external DTDs by default. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Checkstyle Debian Linux Fedora
NVD GitHub
CVSS 3.0
5.3
EPSS
3.7%
CVE-2018-1000009 Maven HIGH PATCH This Week

Jenkins Checkstyle Plugin 3.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XXE SSRF Checkstyle
NVD
CVSS 3.0
8.8
EPSS
0.9%
EPSS 4% CVSS 5.3
MEDIUM PATCH This Month

Checkstyle before 8.18 loads external DTDs by default. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE Checkstyle Debian Linux +1
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

Jenkins Checkstyle Plugin 3.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XXE SSRF +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy