Vulnerability Details CVE-2023-37942
Jenkins External Monitor Job Type Plugin 206.v9a_94ff0b_4a_10 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.8%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-37942
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.0
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.1
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.2
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.3
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.4
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.5
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.6
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.7
-
cpe:2.3:a:jenkins:external_monitor_job_type:1.7.1
-
cpe:2.3:a:jenkins:external_monitor_job_type:189.v849257a_0d3a_c
-
cpe:2.3:a:jenkins:external_monitor_job_type:191.v363d0d1efdf8
-
cpe:2.3:a:jenkins:external_monitor_job_type:192.ve979ca_8b_3ccd
-
cpe:2.3:a:jenkins:external_monitor_job_type:203.v683c09d993b_9
-
cpe:2.3:a:jenkins:external_monitor_job_type:206.v9a_94ff0b_4a_10