CVE-2022-45395: XML External Entity Reference in Jenkins CCCC Plugin

Severity: Critical

CVSS Score: 9.8

Jenkins CCCC Plugin 0.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.