Cobertura

cobertura

Vendor: Jenkins • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-2139 1Jenkins 1Cobertura Nov 21, 2024 Mar 9, 2020 N/A· v4 6.5 MEDIUM· v3 8.5 HIGH· v2 An arbitrary file write vulnerability in Jenkins Cobertura Plugin 1.15 and earlier allows attackers able to control the coverage report file contents to overwrite any file on the Jenkins master file system.
CVE-2020-2138 1Jenkins 1Cobertura Nov 21, 2024 Mar 9, 2020 N/A· v4 7.1 HIGH· v3 5.5 MEDIUM· v2 Jenkins Cobertura Plugin 1.15 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.