Identifier

CVE-2020-2247

Package Slug

maven/org.jenkins-ci.plugins/klocwork

Vulnerability

Improper Restriction of XML External Entity Reference

Description

The Jenkins Klocwork Analysis Plugin does not configure its XML parser to prevent XML external entity (XXE) attacks.

Affected Versions

All versions up to 2020.2.1

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-09-07

source