CVE-2020-2167
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-2167
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-2167.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-2167
- Aliases
- Related
- Published
- 2020-03-25T17:15:15Z
- Modified
- 2024-10-12T05:51:36.994531Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Jenkins OpenShift Pipeline Plugin 1.0.56 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
- References
Affected packages
Git / github.com/jenkinsci/openshift-pipeline-plugin
Affected ranges
- Type
- GIT
- Repo
- https://github.com/jenkinsci/openshift-pipeline-plugin
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
1.*
1.0
openshift-pipeline-1.*
openshift-pipeline-1.0.10
openshift-pipeline-1.0.11
openshift-pipeline-1.0.12
openshift-pipeline-1.0.13
openshift-pipeline-1.0.14
openshift-pipeline-1.0.15
openshift-pipeline-1.0.16
openshift-pipeline-1.0.17
openshift-pipeline-1.0.18
openshift-pipeline-1.0.19
openshift-pipeline-1.0.2
openshift-pipeline-1.0.20
openshift-pipeline-1.0.22
openshift-pipeline-1.0.23
openshift-pipeline-1.0.24
openshift-pipeline-1.0.25
openshift-pipeline-1.0.26
openshift-pipeline-1.0.27
openshift-pipeline-1.0.29
openshift-pipeline-1.0.3
openshift-pipeline-1.0.30
openshift-pipeline-1.0.31
openshift-pipeline-1.0.32
openshift-pipeline-1.0.33
openshift-pipeline-1.0.34
openshift-pipeline-1.0.35
openshift-pipeline-1.0.36
openshift-pipeline-1.0.38
openshift-pipeline-1.0.4
openshift-pipeline-1.0.40
openshift-pipeline-1.0.41
openshift-pipeline-1.0.42
openshift-pipeline-1.0.43
openshift-pipeline-1.0.44
openshift-pipeline-1.0.45
openshift-pipeline-1.0.46
openshift-pipeline-1.0.47
openshift-pipeline-1.0.48
openshift-pipeline-1.0.49
openshift-pipeline-1.0.5
openshift-pipeline-1.0.50
openshift-pipeline-1.0.51
openshift-pipeline-1.0.52
openshift-pipeline-1.0.53
openshift-pipeline-1.0.54
openshift-pipeline-1.0.55
openshift-pipeline-1.0.56
openshift-pipeline-1.0.6
openshift-pipeline-1.0.8