{"id":"CVE-2020-2252","details":"Jenkins Mailer Plugin 1.32 and earlier does not perform hostname validation when connecting to the configured SMTP server.","aliases":["GHSA-6fr3-286q-q3cr"],"modified":"2026-04-11T20:41:38.304520Z","published":"2020-09-16T14:15:13Z","references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2020/09/16/3"},{"type":"ADVISORY","url":"https://www.jenkins.io/security/advisory/2020-09-16/#SECURITY-1813"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/jenkinsci/mailer-plugin","events":[{"introduced":"0"},{"last_affected":"3997c089a018ae98a0ae18cb1d3c37bcc46cef3a"}],"database_specific":{"cpe":"cpe:2.3:a:jenkins:mailer:*:*:*:*:*:jenkins:*:*","extracted_events":[{"introduced":"0"},{"last_affected":"1.32"}],"source":"CPE_FIELD"}}],"versions":["mailer-1.0","mailer-1.1","mailer-1.10","mailer-1.11","mailer-1.12","mailer-1.12-beta-1","mailer-1.13","mailer-1.14","mailer-1.15","mailer-1.16","mailer-1.17","mailer-1.18","mailer-1.19","mailer-1.2","mailer-1.20","mailer-1.21","mailer-1.22","mailer-1.23","mailer-1.23-beta-1","mailer-1.23-beta-2","mailer-1.24","mailer-1.25","mailer-1.26","mailer-1.27","mailer-1.28","mailer-1.29","mailer-1.3","mailer-1.30","mailer-1.31","mailer-1.32","mailer-1.4","mailer-1.5","mailer-1.6","mailer-1.7","mailer-1.8","mailer-1.9"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-2252.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}