Violations
1 CVEs
product
Monthly
Jenkins Violations Plugin 0.7.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.
Jenkins
XXE
Violations
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-45386
Maven
EPSS 0%
CVSS 5.5
MEDIUM
This Month
Jenkins Violations Plugin 0.7.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.
Jenkins
XXE
Violations
NVD