Maven package
org.jenkins-ci.plugins/matlab
pkg:maven/org.jenkins-ci.plugins/matlab
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-49656 | — | < 2.11.1 | 2.11.1 | Nov 29, 2023 | Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. | ||
| CVE-2023-49655 | — | < 2.11.1 | 2.11.1 | Nov 29, 2023 | A cross-site request forgery (CSRF) vulnerability in Jenkins MATLAB Plugin 2.11.0 and earlier allows attackers to have Jenkins parse an XML file from the Jenkins controller file system. | ||
| CVE-2023-49654 | — | < 2.11.1 | 2.11.1 | Nov 29, 2023 | Missing permission checks in Jenkins MATLAB Plugin 2.11.0 and earlier allow attackers to have Jenkins parse an XML file from the Jenkins controller file system. |
- CVE-2023-49656Nov 29, 2023affected < 2.11.1fixed 2.11.1
Jenkins MATLAB Plugin 2.11.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
- CVE-2023-49655Nov 29, 2023affected < 2.11.1fixed 2.11.1
A cross-site request forgery (CSRF) vulnerability in Jenkins MATLAB Plugin 2.11.0 and earlier allows attackers to have Jenkins parse an XML file from the Jenkins controller file system.
- CVE-2023-49654Nov 29, 2023affected < 2.11.1fixed 2.11.1
Missing permission checks in Jenkins MATLAB Plugin 2.11.0 and earlier allow attackers to have Jenkins parse an XML file from the Jenkins controller file system.