CVE-2023-49654

Summary

Missing permission checks in Jenkins MATLAB Plugin 2.11.0 and earlier allow attackers to have Jenkins parse an XML file from the Jenkins controller file system.

Affected Software

VendorProductVersion RangeStatus
Jenkins ProjectJenkins MATLAB Plugin0 <= 2.11.0affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References