GHSA-g43x-pcc9-f472, CVE-2022-41226
maven/com.compuware.jenkins/compuware-common-configuration
Improper Restriction of XML External Entity Reference
Jenkins Compuware Common Configuration Plugin 1.0.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
All versions up to 1.0.14
Upgrade to version 1.0.15 or above.
2022-09-27
source |