CVE-2022-30971

Summary

Jenkins Storable Configs Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins Storable Configs Pluginunspecified <= 1.0affected
Jenkins projectJenkins Storable Configs Pluginnext of 1.0 < unspecifiedunknown

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References