Vulnerabilities

CVE-2025-64134

by Fred · 29/10/2025

Jenkins JDepend Plugin 1.3.1 and earlier includes an outdated version of JDepend Maven Plugin that does not configure its XML parser to prevent XML external entity (XXE) attacks.

More information : https://www.jenkins.io/security/advisory/2025-10-29/#SECURITY-2936

Similar

Tags: Cybersecurity Alert