Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:29 p.m.8 views

CVE-2020-2168

Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability...

8.8CVSS7.8AI score0.01957EPSS
Exploits0
OSV
OSV
added 2022/05/24 5:12 p.m.42 views

GHSA-5QFF-7944-VQ4F RCE vulnerability in Jenkins Azure Container Service Plugin

Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types. This results in a remote code execution RCE vulnerability exploitable by users able to provide YAML input files to Azure Container Service Plugin’s build step. Azur...

8.8CVSS9AI score0.01957EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/06/10 12:0 a.m.6 views

The vulnerability of the YAML syntax analyzer in the Jenkins Azure Container Service Plugin allows a perpetrator to execute arbitrary code.

The vulnerability of the YAML syntax analyzer in the Jenkins Azure Container Service Plugin is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS8AI score0.01957EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2020/03/26 12:0 a.m.2 views

CloudBees Jenkins Azure Container Service plugin code issue vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. CloudBees. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks.Azure Container Service Plugin is used in which an Azure...

8.8CVSS6.8AI score0.01957EPSS
Exploits0References1
NVD
NVD
added 2020/03/25 5:15 p.m.20 views

CVE-2020-2168

Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability...

8.8CVSS9AI score0.01957EPSS
Exploits0References2
Prion
Prion
added 2020/03/25 5:15 p.m.15 views

Remote code execution

Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability...

6.5CVSS9AI score0.01957EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/25 4:5 p.m.24 views

CVE-2020-2168

Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability...

9AI score0.01957EPSS
Exploits0References2
CVE
CVE
added 2020/03/25 4:5 p.m.66 views

CVE-2020-2168

CVE-2020-2168 affects the Jenkins Azure Container Service Plugin for Jenkins, with versions 1.0.1 and earlier. The root cause is that the plugin’s YAML parser does not restrict deserialization, allowing arbitrary types to be instantiated, which enables remote code execution (RCE). Impact is high ...

8.8CVSS9AI score0.01957EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder