Vulnerabilities > Jenkins > Cobertura

DATE CVE VULNERABILITY TITLE RISK
2020-03-09 CVE-2020-2139 Path Traversal vulnerability in Jenkins Cobertura
An arbitrary file write vulnerability in Jenkins Cobertura Plugin 1.15 and earlier allows attackers able to control the coverage report file contents to overwrite any file on the Jenkins master file system.
network
low complexity
jenkins CWE-22
6.5
2020-03-09 CVE-2020-2138 XXE vulnerability in Jenkins Cobertura
Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
network
low complexity
jenkins CWE-611
7.1