Crap4j Jenkins Crap4j

Do you want an email whenever new security vulnerabilities are reported in Jenkins Crap4j?

By the Year

In 2023 there have been 1 vulnerability in Jenkins Crap4j with an average score of 7.5 out of ten. Crap4j did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.

Year Vulnerabilities Average Score
2023 1 7.50
2022 0 0.00
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Crap4j vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Jenkins Crap4j Security Vulnerabilities

Jenkins Crap4J Plugin 0.9 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

CVE-2023-28680 7.5 - High - April 02, 2023

Jenkins Crap4J Plugin 0.9 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

XXE

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Jenkins Crap4j or by Jenkins? Click the Watch button to subscribe.

Jenkins
Vendor

subscribe