CVE-2020-2138

Summary

Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Cobertura Pluginunspecified <= 1.15affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References