CVE-2020-2144 is a vulnerability in Jenkins Rundeck
Published on March 9, 2020

Jenkins Rundeck Plugin 3.6.6 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.

NVD

Products Associated with CVE-2020-2144

Want to know whenever a new CVE is published for Jenkins Rundeck? stack.watch will email you.

Jenkins Rundeck

Affected Versions

Jenkins project Jenkins Rundeck Plugin:

Version unspecified, <= 3.6.6 is affected.

Exploit Probability

EPSS

0.07%

Percentile

20.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-2144 is a vulnerability in Jenkins RundeckPublished on March 9, 2020

Products Associated with CVE-2020-2144

Affected Versions

Exploit Probability

CVE-2020-2144 is a vulnerability in Jenkins Rundeck
Published on March 9, 2020