Filesystem Trigger
1 CVEs
product
Monthly
Jenkins Filesystem Trigger Plugin 0.40 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Jenkins
XXE
Filesystem Trigger
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2021-21657
Maven
EPSS 2%
CVSS 8.8
HIGH
PATCH
This Week
Jenkins Filesystem Trigger Plugin 0.40 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Jenkins
XXE
Filesystem Trigger
NVD