Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-21606HistoryJan 13, 2021 - 4:15 p.m.
CVE-2021-21606
2021-01-1316:15:00
Alpine Linux Development Team
security.alpinelinux.org
11
0.001 Low
EPSS
Percentile
21.4%
Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.12-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.13-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | jenkins | < 2.275-r0 | UNKNOWN |
Related
github
github
Arbitrary file existence check in file fingerprints in Jenkins
2022-05-24 17:39:12
prion
prion
Path traversal
2021-01-13 16:15:00
osv
osv
BIT-jenkins-2021-21606
2024-03-06 11:03:25
CVE-2021-21606
2021-01-13 16:15:13
Arbitrary file existence check in file fingerprints in Jenkins
2022-05-24 17:39:12
cve
cve
CVE-2021-21606
2021-01-13 16:15:00
redhatcve
redhatcve
CVE-2021-21606
2021-02-04 14:55:58
cvelist
cvelist
CVE-2021-21606
2021-01-13 15:55:29
nessus
nessus
Jenkins < 2.263.2 LTS / 2.275 Multiple Vulnerabilities
2021-01-22 00:00:00
FreeBSD : jenkins -- multiple vulnerabilities (d6f76976-e86d-4f9a-9362-76c849b10db2)
2021-01-14 00:00:00
RHEL 8 : OpenShift Container Platform 4.6.17 (RHSA-2021:0423)
2021-02-18 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2021-01-13 00:00:00
openvas
openvas
Jenkins < 2.275, < 2.263.2 Multiple Vulnerabilities - Linux
2021-01-14 00:00:00
Jenkins < 2.275, < 2.263.2 Multiple Vulnerabilities - Windows
2021-01-14 00:00:00
archlinux
archlinux
[ASA-202101-41] jenkins: multiple issues
2021-01-20 00:00:00
redhat
redhat