Lucene search
JenkinsCVELIST:CVE-2021-21661HistoryJun 10, 2021 - 2:25 p.m.
CVE-2021-21661
2021-06-1014:25:19
jenkins
www.cve.org
Jenkins Kubernetes CLI Plugin 1.10.0 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.
CNA Affected
[
{
"product": "Jenkins Kubernetes CLI Plugin",
"vendor": "Jenkins project",
"versions": [
{
"lessThanOrEqual": "1.10.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-21661
2021-06-10 15:15:08
prion
prion
Design/Logic Flaw
2021-06-10 15:15:00
cve
cve
CVE-2021-21661
2021-06-10 15:15:08
github
github
Missing Authorization in Jenkins Kubernetes CLI Plugin
2021-06-16 17:11:30
osv
osv
CVE-2021-21661
2021-06-10 15:15:08
Missing Authorization in Jenkins Kubernetes CLI Plugin
2021-06-16 17:11:30
nuclei
nuclei
WordPress <5.8.3 - SQL Injection
2023-03-24 14:34:38