Lucene search
GoogleOSV:GHSA-P498-RPCW-3578HistoryMay 14, 2022 - 3:45 a.m.
XXE vulnerability Jenkins Warnings Plugin
2022-05-1403:45:49
Google
osv.dev
3
xxe vulnerability
jenkins warnings plugin
xml external entities
user permissions
secrets extraction
ssrf
dos attacks
security alert
Jenkins Warnings Plugin 4.64 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks.
Related
cvelist
cvelist
CVE-2018-1000012
2018-01-23 14:00:00
nvd
nvd
CVE-2018-1000012
2018-01-23 14:29:00
cve
cve
CVE-2018-1000012
2018-01-23 14:29:00
github
github
XXE vulnerability Jenkins Warnings Plugin
2022-05-14 03:45:49
prion
prion
Server side request forgery (ssrf)
2018-01-23 14:29:00
osv
osv
CVE-2018-1000012
2018-01-23 14:29:00
alpinelinux
alpinelinux
CVE-2018-1000012
2018-01-23 14:29:00