CVE-2023-49656
published 2023-11-29CVE-2023-49656: Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jenkins | google_compute_engine_plugin | — | — |
| jenkins | jira_plugin | — | — |
| jenkins | matlab | < 2.11.1 | 2.11.1 |
| jenkins | matlab_plugin | — | — |
| jenkins_project | jenkins_matlab_plugin | <= 2.11.0 | — |