Lucene search
GoogleOSV:CVE-2021-21643HistoryApr 21, 2021 - 3:15 p.m.
CVE-2021-21643
2021-04-2115:15:08
Google
osv.dev
9
Jenkins Config File Provider Plugin 3.7.0 and earlier does not correctly perform permission checks in several HTTP endpoints, allowing attackers with global Job/Configure permission to enumerate system-scoped credentials IDs of credentials stored in Jenkins.
Related
redhatcve
redhatcve
CVE-2021-21643
2021-04-21 19:21:15
osv
osv
github
github
prion
prion
Design/Logic Flaw
2021-04-21 15:15:00
alpinelinux
alpinelinux
CVE-2021-21643
2021-04-21 15:15:08
cvelist
cvelist
CVE-2021-21643
2021-04-21 14:20:28
nvd
nvd
CVE-2021-21643
2021-04-21 15:15:08
cve
cve
CVE-2021-21643
2021-04-21 15:15:08
veracode
veracode
Information Disclosure
2021-06-08 12:38:32
redhat
redhat
nessus
nessus
Jenkins Enterprise and Operations Center < 2.249.31.0.1-2 / 2.277.3.1-2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-21)
2021-11-19 00:00:00
RHEL 7 / 8 : OpenShift Container Platform 4.7.13 (RHSA-2021:2122)
2022-09-15 00:00:00
RHEL 7 : OpenShift Container Platform 3.11.462 (RHSA-2021:2517)
2021-07-01 00:00:00