Vulnerabilities > Jenkins > Sourcemonitor > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-15 CVE-2022-45396 XXE vulnerability in Jenkins Sourcemonitor 0.2
Jenkins SourceMonitor Plugin 0.2 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
network
low complexity
jenkins CWE-611
critical
 9.8
9.8