CVE-2023-24441
XML external entity vulnerability on agents in Jenkins MSTest Plugin in maven/org.jvnet.hudson.plugins/mstest
Identifiers
GHSA-3ppr-72x5-x67q, CVE-2023-24441
Package Slug
maven/org.jvnet.hudson.plugins/mstest
Vulnerability
XML external entity vulnerability on agents in Jenkins MSTest Plugin
Description
Jenkins MSTest Plugin 1.0.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Affected Versions
All versions up to 1.0.0
Solution
Unfortunately, there is no solution available yet.
Last Modified
2023-01-27
| source |