Lucene search
China National Vulnerability DatabaseCNVD-2021-87313HistoryNov 08, 2021 - 12:00 a.m.
Jenkins Unauthorized Access Vulnerability
2021-11-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
EPSS
0.003
Percentile
70.0%
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins suffers from a security vulnerability that stems from FilePath #listFiles listing symbolic links in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier that the agent is allowed to follow when An attacker could exploit the vulnerability to obtain sensitive information by accessing files outside of the directories.
Related
github
github
prion
prion
Design/Logic Flaw
2021-11-04 17:15:00
alpinelinux
alpinelinux
CVE-2021-21695
2021-11-04 17:15:00
osv
osv
CVE-2021-21695
2021-11-04 17:15:08
BIT-jenkins-2021-21695
2024-03-06 10:59:24
nvd
nvd
CVE-2021-21695
2021-11-04 17:15:08
veracode
veracode
Privilege Escalation
2021-12-08 00:41:01
cvelist
cvelist
CVE-2021-21695
2021-11-04 16:30:40
redhatcve
redhatcve
CVE-2021-21695
2021-11-04 16:52:42
cve
cve
CVE-2021-21695
2021-11-04 17:15:08
openvas
openvas
Jenkins < 2.303.3, < 2.319 Multiple Vulnerabilities - Linux
2021-11-05 00:00:00
Jenkins < 2.303.3, < 2.319 Multiple Vulnerabilities - Windows
2021-11-05 00:00:00
archlinux
archlinux
[ASA-202111-1] jenkins: multiple issues
2021-11-05 00:00:00
redhat
redhat
nessus
nessus
Jenkins LTS < 2.303.3 / Jenkins weekly < 2.319 Multiple Vulnerabilities
2021-11-04 00:00:00
RHEL 8 : OpenShift Container Platform 4.9.9 (RHSA-2021:4833)
2021-11-30 00:00:00
RHEL 7 : OpenShift Container Platform 3.11.569 (RHSA-2021:4827)
2021-12-04 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2021-11-04 00:00:00