CVE-2021-21701

Improper Restriction of XML External Entity Reference in maven/org.jenkins-ci.plugins/performance

Identifiers

CVE-2021-21701

Package Slug

maven/org.jenkins-ci.plugins/performance

Vulnerability

Improper Restriction of XML External Entity Reference

Description

Jenkins Performance Plugin does not configure its XML parser to prevent XML external entity (XXE) attacks.

Affected Versions

All versions up to 3.20

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-11-18

source