Lucene search
JenkinsCVELIST:CVE-2021-21642HistoryApr 21, 2021 - 2:20 p.m.
CVE-2021-21642
2021-04-2114:20:28
jenkins
www.cve.org
1
Jenkins Config File Provider Plugin 3.7.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.
CNA Affected
[
{
"product": "Jenkins Config File Provider Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "3.7.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
XML External Entity (XXE)
2021-06-08 12:38:31
osv
osv
XML External Entity Reference vulnerability in Jenkins Config File Provider Plugin
2022-05-24 17:48:06
CVE-2021-21642
2021-04-21 15:15:08
prion
prion
Xxe
2021-04-21 15:15:00
checkpoint_advisories
checkpoint_advisories
alpinelinux
alpinelinux
CVE-2021-21642
2021-04-21 15:15:08
redhatcve
redhatcve
CVE-2021-21642
2021-04-21 19:19:51
cve
cve
CVE-2021-21642
2021-04-21 15:15:08
github
github
nvd
nvd
CVE-2021-21642
2021-04-21 15:15:08
nessus
nessus
RHEL 7 / 8 : OpenShift Container Platform 4.7.13 (RHSA-2021:2122)
2022-09-15 00:00:00
Jenkins Enterprise and Operations Center < 2.249.31.0.1-2 / 2.277.3.1-2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-21)
2021-11-19 00:00:00
RHEL 7 : OpenShift Container Platform 3.11.462 (RHSA-2021:2517)
2021-07-01 00:00:00
redhat
redhat