Lucene search

XXE vulnerability Jenkins Warnings Plugin

🗓️ 14 May 2022 03:49:45Reported by GitHub Advisory DatabaseType

XXE vulnerability in Jenkins Warnings Plugin. Allows attackers to extract secrets, perform SSRF, and DoS attacks

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2018-1000012	23 Jan 201814:00	–	cvelist
CVE	CVE-2018-1000012	23 Jan 201814:29	–	cve
NVD	CVE-2018-1000012	23 Jan 201814:29	–	nvd
OSV	CVE-2018-1000012	23 Jan 201814:29	–	osv
OSV	XXE vulnerability Jenkins Warnings Plugin	14 May 202203:45	–	osv
Prion	Server side request forgery (ssrf)	23 Jan 201814:29	–	prion
AlpineLinux	CVE-2018-1000012	23 Jan 201814:29	–	alpinelinux

Vulners

Node

org.jvnet.hudson.plugins warningsRange≤4.64

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-1000012
jenkins	www.jenkins.io/security/advisory/2018-01-22/
github	www.github.com/advisories/GHSA-p498-rpcw-3578

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2022 03:45Current

6.7Medium risk

Vulners AI Score6.7

CVSS26.5

CVSS38.8

EPSS0.00104

CWE-611