CyberRota
← Ana sayfaya dön

CVE-2026-57303

HIGH · CVSS 7.1 EPSS %0.22

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-24T14:17:36.407 · Çekilme zamanı: 2026-06-30T18:31:29.818050+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-57303
Severity
HIGH
CVSS
7.1
EPSS
%0.22
Jenkins

Orijinal NVD Açıklaması

Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers able to control the responses of the configured Assembla server to extract secrets from the Jenkins controller or perform server-side request forgery.