CVE-2020-2158

Jenkins Literate Plugin 1.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.

Published Feb 3, 2026

https://jenkins.io/security/advisory/2020-03-09/#SECURITY-1750

CVSS ScoreHigh

8.8

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2020-2158

Jenkins Literate Plugin 1.0 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.

Published Feb 3, 2026

https://jenkins.io/security/advisory/2020-03-09/#SECURITY-1750

CVSS ScoreHigh

8.8


maven	org.jenkins-ci.plugins/literate	1.0

Ecosystem	Package	Version


maven	org.jenkins-ci.plugins/literate	1.0

Find vulnerabilities. Fix fast with AI.

CVE-2020-2158

CVE-2020-2158