Parasoft Findings
1 CVEs
product
Monthly
Jenkins Parasoft Findings Plugin 10.4.3 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Jenkins
XXE
Parasoft Findings
NVD
CVSS 3.1
7.1
EPSS
0.9%
CVE-2020-2178
Maven
EPSS 1%
CVSS 7.1
HIGH
PATCH
This Week
Jenkins Parasoft Findings Plugin 10.4.3 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Jenkins
XXE
Parasoft Findings
NVD