Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2020-2189
CVE-2020-2189
Jenkins SCM Filter Jervis Plugin 0.2.1 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
Published Feb 3, 2026
https://www.jenkins.io/security/advisory/2020-05-06/#SECURITY-1826
CVSS Score
High
8.8
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
io.jenkins.plugins/scm-filter-jervis
0.1
maven
io.jenkins.plugins/scm-filter-jervis
0.2.1
maven
io.jenkins.plugins/scm-filter-jervis
0.2
maven
io.jenkins.plugins/scm-filter-jervis
0.3
1-4 of 4
CVE-2020-2189 | Components Impacted | Sonatype Guide | Sonatype Guide
