Vulnerabilities > Jenkins > Nerrvana > 1.02.01

DATE CVE VULNERABILITY TITLE RISK
2020-10-08 CVE-2020-2298 Unspecified vulnerability in Jenkins Nerrvana
Jenkins Nerrvana Plugin 1.02.06 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
network
low complexity
jenkins
6.5
6.5