CVE-2020-2192

2020-06-0313:15:10

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.4%

JSON

A cross-site request forgery vulnerability in Jenkins Self-Organizing Swarm Plug-in Modules Plugin 3.20 and earlier allows attackers to add or remove agent labels.

CPENameOperatorVersion
swarm-plugineqswarm-plugin-1.11
swarm-plugineqswarm-plugin-1.24
swarm-plugineqswarm-plugin-3.20
swarm-plugineqswarm-plugin-2.2
swarm-plugineqswarm-plugin-3.3
swarm-plugineqswarm-plugin-3.17
swarm-plugineqswarm-plugin-1.10
swarm-plugineqswarm-plugin-3.15
swarm-plugineqswarm-plugin-3.4
swarm-plugineqswarm-plugin-3.14

Name	Operator	Version
swarm-plugin	eq	swarm-plugin-1.11
swarm-plugin	eq	swarm-plugin-1.24
swarm-plugin	eq	swarm-plugin-3.20
swarm-plugin	eq	swarm-plugin-2.2
swarm-plugin	eq	swarm-plugin-3.3
swarm-plugin	eq	swarm-plugin-3.17
swarm-plugin	eq	swarm-plugin-1.10
swarm-plugin	eq	swarm-plugin-3.15
swarm-plugin	eq	swarm-plugin-3.4
swarm-plugin	eq	swarm-plugin-3.14