Vulnerabilities > Jenkins > Google Kubernetes Engine

DATE CVE VULNERABILITY TITLE RISK
2020-02-12 CVE-2020-2121 Unspecified vulnerability in Jenkins Google Kubernetes Engine
Jenkins Google Kubernetes Engine Plugin 0.8.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
network
low complexity
jenkins
8.8
2019-10-16 CVE-2019-10445 Missing Authorization vulnerability in Jenkins Google Kubernetes Engine
A missing permission check in Jenkins Google Kubernetes Engine Plugin 0.7.0 and earlier allowed attackers with Overall/Read permission to obtain limited information about the scope of a credential with an attacker-specified credentials ID.
network
low complexity
jenkins CWE-862
4.3