Vulnerabilities > Jenkins > Literate

DATE CVE VULNERABILITY TITLE RISK
2020-03-09 CVE-2020-2158 Deserialization of Untrusted Data vulnerability in Jenkins Literate 0.1/0.2/1.0
Jenkins Literate Plugin 1.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
network
low complexity
jenkins CWE-502
8.8