CVE-2022-41241: Jenkins RQM Plugin vulnerable to Improper Restriction of XML External Entity Reference

Severity: Critical

CVSS Score: 5.9

Jenkins RQM Plugin 2.8 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.