vulnerability
Jenkins Advisory 2020-03-25: CVE-2020-2168: RCE vulnerability in Azure Container Service Plugin
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | 2020-03-25 | 2020-03-27 | 2022-07-12 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
2020-03-25
Added
2020-03-27
Modified
2022-07-12
Description
Jenkins Azure Container Service Plugin 1.0.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
Solution(s)
jenkins-lts-upgrade-2_204_6jenkins-upgrade-2_228
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.