Valgrind@* Security Vulnerabilities and Issues — Valgrind@* CVE List

Lucene search

JenkinsValgrind*

2 matches found

CVE•added 2020/09/01 2:15 p.m.•50 views

CVE-2020-2245

Jenkins Valgrind Plugin 0.28 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

7.1CVSS6.8AI score0.00168EPSS

CVE•added 2020/09/01 2:15 p.m.•47 views

CVE-2020-2246

Jenkins Valgrind Plugin 0.28 and earlier does not escape content in Valgrind XML reports, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to control Valgrind XML report contents.

5.4CVSS5.2AI score0.00233EPSS