Jenkins MATLAB Plugin 2.11.0 XML parse via missing permission
CVE-2023-49654 Published on November 29, 2023

Missing permission checks in Jenkins MATLAB Plugin 2.11.0 and earlier allow attackers to have Jenkins parse an XML file from the Jenkins controller file system.

Vendor Advisory NVD

Products Associated with CVE-2023-49654

Want to know whenever a new CVE is published for Jenkins Matlab? stack.watch will email you.

Jenkins Matlab

Affected Versions

Jenkins Project Jenkins MATLAB Plugin:

Before and including 2.11.0 is affected.

Exploit Probability

EPSS

0.07%

Percentile

21.05%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Jenkins MATLAB Plugin 2.11.0 XML parse via missing permissionCVE-2023-49654 Published on November 29, 2023

Products Associated with CVE-2023-49654

Affected Versions

Exploit Probability

Jenkins MATLAB Plugin 2.11.0 XML parse via missing permission
CVE-2023-49654 Published on November 29, 2023