CVE-2022-45400
Improper Restriction of XML External Entity Reference in maven/org.jvnet.hudson.plugins/japex
Identifiers
GHSA-8538-25v4-25pg, CVE-2022-45400
Package Slug
maven/org.jvnet.hudson.plugins/japex
Vulnerability
Improper Restriction of XML External Entity Reference
Description
Jenkins JAPEX Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Affected Versions
All versions up to 1.7
Solution
Unfortunately, there is no solution available yet.
Last Modified
2022-11-22
| source |