Vulnerabilities > CVE-2023-49656 - XXE vulnerability in Jenkins Matlab

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

critical

NVD

Published: 2023-11-29

Updated: 2023-12-05

Summary

Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

Part	Description	Count
Application	Jenkins Jenkins Matlab *	1