CVE-2021-43577

Published: Nov 12, 2021

Modified: Aug 4, 2024

PUBLISHED

Jenkins OWASP Dependency-Check Plugin 5.1.1 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Vendor	Product	Versions
Jenkins project	Jenkins OWASP Dependency-Check Plugin	affected `unspecified - <= 5.1.1` unknown `next of 5.1.1 - < unspecified`

x_refsource_CONFIRM

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.