Miggo Logo
Miggo Vulnerability Database
CVE-2020-2166

CVE-2020-2166:
RCE vulnerability in Jenkins Pipeline: AWS Steps Plugin

8.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2020-2166
GHSA ID
GHSA-w598-25hm-jqx3
EPSS Score
0.6998%
CWE
CWE-20
Published
5/24/2022
Updated
1/31/2023
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
de.taimos:pipeline-awsmaven< 1.411.41

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insecure YAML deserialization. While exact code isn't provided, the advisory explicitly states the parser wasn't configured to prevent arbitrary type instantiation. This strongly suggests usage of an unsafe YAML loading method like SnakeYAML's Yaml.load() without a SafeConstructor. The fix in v1.41 would involve implementing type filtering, which aligns with common YAML deserialization vulnerability patterns (CWE-502). The high confidence comes from the direct match between described vulnerability behavior and known unsafe YAML parsing practices.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Pip*lin*: *WS St*ps Plu*in *.** *n* **rli*r *o*s not *on*i*ur* its Y*ML p*rs*r to pr*v*nt t** inst*nti*tion o* *r*itr*ry typ*s. T*is r*sults in * r*mot* *o** *x**ution (R**) vuln*r**ility *xploit**l* *y us*rs **l* to provi** Y*ML input *il*s to Pip*l

Reasoning

T** vuln*r**ility st*ms *rom ins**ur* Y*ML **s*ri*liz*tion. W*il* *x**t *o** isn't provi***, t** **visory *xpli*itly st*t*s t** p*rs*r w*sn't *on*i*ur** to pr*v*nt *r*itr*ry typ* inst*nti*tion. T*is stron*ly su***sts us*** o* *n uns*** Y*ML lo**in* m