Vulnerabilities > Jenkins > Pipeline > aws.steps

DATE CVE VULNERABILITY TITLE RISK
2020-03-25 CVE-2020-2166 Improper Input Validation vulnerability in Jenkins Pipeline: AWS Steps
Jenkins Pipeline: AWS Steps Plugin 1.40 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
network
low complexity
jenkins CWE-20
8.8
8.8