6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.0%
XML external entity (XXE) vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote attackers to read arbitrary XML files via a crafted XML document.
bugzilla.redhat.com/show_bug.cgi?id=1205632
jenkins.io/security/advisory/2015-02-27
nvd.nist.gov/vuln/detail/CVE-2015-1811