Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2020-2146
CVE-2020-2146
Jenkins Mac Plugin 1.1.0 and earlier does not validate SSH host keys when connecting agents created by the plugin, enabling man-in-the-middle attacks.
Published Feb 4, 2026
https://github.com/advisories/GHSA-rv9g-67f7-grq7
CVSS Score
High
7.4
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
fr.edf.jenkins.plugins/mac
1.0.0
maven
fr.edf.jenkins.plugins/mac
1.0.1
maven
fr.edf.jenkins.plugins/mac
1.0.2
maven
fr.edf.jenkins.plugins/mac
1.1.0
1-4 of 4
CVE-2020-2146 | Components Impacted | Sonatype Guide | Sonatype Guide
