Lucene search
JenkinsCVELIST:CVE-2020-2185HistoryMay 06, 2020 - 12:45 p.m.
CVE-2020-2185
2020-05-0612:45:24
jenkins
www.cve.org
6
EPSS
0.001
Percentile
31.1%
Jenkins Amazon EC2 Plugin 1.50.1 and earlier does not validate SSH host keys when connecting agents, enabling man-in-the-middle attacks.
CNA Affected
[
{
"product": "Jenkins Amazon EC2 Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "1.50.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2020-2185
2020-05-06 13:15:14
prion
prion
Code injection
2020-05-06 13:15:00
osv
osv
Missing SSH host key validation in Jenkins Amazon EC2 Plugin
2022-05-24 17:17:14
cve
cve
CVE-2020-2185
2020-05-06 13:15:14
github
github
Missing SSH host key validation in Jenkins Amazon EC2 Plugin
2022-05-24 17:17:14