7.7 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.2%
Jenkins Google Kubernetes Engine Plugin 0.8.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
www.openwall.com/lists/oss-security/2020/02/12/3
jenkins.io/security/advisory/2020-02-12/#SECURITY-1731