Jenkins Openshift Pipeline — known CVE vulnerabilities
Every CVE whose affected-product data names Jenkins Openshift Pipeline, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-2167 — CVSS 8.8 (high): Jenkins OpenShift Pipeline Plugin 1.0.56 and earlier does not configure its YAML parser to prevent the instantiation of arbitrary types…
CVE-2025-64143 — CVSS 4.3 (medium): Jenkins OpenShift Pipeline Plugin 1.0.57 and earlier stores authorization tokens unencrypted in job config.xml files on the Jenkins…