Vulnerabilities

CVE-2021-21621

by Fred · 24/02/2021

Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication details only)" information, which can include the session ID of the user creating the support bundle in some configurations.

Date published : 2021-02-24

https://www.jenkins.io/security/advisory/2021-02-24/#SECURITY-2150

http://www.openwall.com/lists/oss-security/2021/02/24/3

Similar

Tags: Cybersecurity Alert