Описание
XML external entity vulnerability on agents in Jenkins MSTest Plugin
Jenkins MSTest Plugin 1.0.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Пакеты
Наименование
org.jvnet.hudson.plugins:mstest
maven
Затронутые версииВерсия исправления
< 1.0.1
1.0.1
Связанные уязвимости
CVSS3: 9.8
nvd
около 3 лет назад
Jenkins MSTest Plugin 1.0.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.