2 matches found
CVE-2020-2146
Jenkins Mac Plugin 1.1.0 and earlier does not validate SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks...
CVE-2020-2146
Summary (CVE-2020-2146) : Jenkins Mac Plugin, versions 1.1.0 and earlier, does not validate SSH host keys when connecting agents, enabling man-in-the-middle attacks. This behavior is confirmed across multiple sources in the provided documents. Impact : lack of host-key validation could allow inte...