0.001 Low
EPSS
Percentile
28.5%
Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
bugzilla.redhat.com/show_bug.cgi?id=1819070
jenkins.io/security/advisory/2020-03-09/#SECURITY-1700
nvd.nist.gov/vuln/detail/CVE-2020-2138
www.cve.org/CVERecord?id=CVE-2020-2138