Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2020-2159
CVE-2020-2159
Jenkins CryptoMove Plugin 0.1.33 and earlier allows attackers with Job/Configure access to execute arbitrary OS commands on the Jenkins master as the OS user account running Jenkins.
Published Feb 4, 2026
https://jenkins.io/security/advisory/2020-03-09/#SECURITY-1635
http://www.openwall.com/lists/oss-security/2020/03/09/1
https://github.com/advisories/GHSA-p5x5-jg3j-2jcj
CVSS Score
High
8.8
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
io.jenkins.plugins/cryptomove
0.1.17
maven
io.jenkins.plugins/cryptomove
0.1.19
maven
io.jenkins.plugins/cryptomove
0.1.20
maven
io.jenkins.plugins/cryptomove
0.1.21
maven
io.jenkins.plugins/cryptomove
0.1.22
maven
io.jenkins.plugins/cryptomove
0.1.23
maven
io.jenkins.plugins/cryptomove
0.1.24
maven
io.jenkins.plugins/cryptomove
0.1.25
maven
io.jenkins.plugins/cryptomove
0.1.26
maven
io.jenkins.plugins/cryptomove
0.1.27
maven
io.jenkins.plugins/cryptomove
0.1.28
maven
io.jenkins.plugins/cryptomove
0.1.29
maven
io.jenkins.plugins/cryptomove
0.1.30
maven
io.jenkins.plugins/cryptomove
0.1.31
maven
io.jenkins.plugins/cryptomove
0.1.32
maven
io.jenkins.plugins/cryptomove
0.1.33
1-16 of 16
CVE-2020-2159 | Components Impacted | Sonatype Guide | Sonatype Guide
