Fabian Beterke

**Name of the Vulnerable Software and Affected Versions** Hudson versions prior to 3.3.2 **Description** The issue allows XXE (XML External Entity) attacks, which can provide access to potentially sensitive information on the filesystem of the Hudson master server. This is due to a flaw in the XML API processing. **Recommendations** For versions prior to 3.3.2, update to version 3.3.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the XML API to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 10.13.5 **Description** The issue is related to the Accessibility Framework component and involves insufficient access restrictions. Exploitation of this issue may allow an attacker to execute arbitrary code with system privileges or disclose protected information using a specially crafted application. **Recommendations** For macOS versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the Accessibility Framework component until a patch is available.