2 matches found
CVE-2020-2138
The CVE-2020-2138 issue concerns Jenkins Cobertura Plugin versions 1.15 and earlier, where the XML parser was not configured to prevent XML External Entity (XXE) attacks. The vulnerability allows a user who can control input files for the Publish Cobertura Coverage Report step to cause the Jenkin...
CVE-2020-2138
Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...