Japex
1 CVEs
product
Monthly
Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Jenkins
XXE
Japex
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-45400
Maven
EPSS 1%
CVSS 9.8
CRITICAL
Act Now
Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Jenkins
XXE
Japex
NVD