Lucene search
China National Vulnerability DatabaseCNVD-2022-54943HistoryMar 31, 2022 - 12:00 a.m.
Jenkins Coverage/Complexity Scatter Plot Plugin XML外部实体注入漏洞
2022-03-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
28.6%
Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is an application.An XML external entity injection vulnerability exists in Jenkins Coverage/Complexity Scatter Plot Plugin 1.1.1 and earlier versions. A remote attacker could use the external entity to extract secrets from a Jenkins controller or server-side request forgery.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jenkins coverage/complexity scatter plot plugin | lt | 1.1.1 |
Related
prion
prion
Xxe
2022-03-29 13:15:00
cvelist
cvelist
CVE-2022-28154
2022-03-29 12:31:18
github
github
osv
osv
CVE-2022-28154
2022-03-29 13:15:10
cve
cve
CVE-2022-28154
2022-03-29 13:15:10
nvd
nvd
CVE-2022-28154
2022-03-29 13:15:10
nessus
nessus
Jenkins plugins Multiple Vulnerabilities (2022-03-29)
2022-03-31 00:00:00