High severityNVD Advisory· Published Dec 7, 2022· Updated Apr 23, 2025
CVE-2022-46682
CVE-2022-46682
Description
Jenkins Plot Plugin 2.1.11 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jenkins-ci.plugins:plotMaven | < 2.1.12 | 2.1.12 |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
4News mentions
1- Jenkins Security Advisory 2022-12-07Jenkins Security Advisories · Dec 7, 2022