CVE-2021-21621

🗓️ 24 Feb 2021 16:15:15Reported by [email protected]Type

Jenkins Support Core Plugin 2.72 and earlier exposes user authentication details

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Prion	Authentication flaw	24 Feb 202116:15	–	prion
OSV	CVE-2021-21621	24 Feb 202116:15	–	osv
OSV	Support bundles can include user session IDs in Jenkins Support Core Plugin	24 May 202217:43	–	osv
CNVD	CloudBees Jenkins Support Core Plugin Information Disclosure Vulnerability	26 Feb 202100:00	–	cnvd
Github Security Blog	Support bundles can include user session IDs in Jenkins Support Core Plugin	24 May 202217:43	–	github
Cvelist	CVE-2021-21621	24 Feb 202115:05	–	cvelist
CVE	CVE-2021-21621	24 Feb 202116:15	–	cve
Tenable Nessus	Jenkins Enterprise and Operations Center < 2.222.43.0.2 rev3 / 2.249.30.0.2 rev3 / 2.263.4.1 rev2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-02-24)	19 Nov 202100:00	–	nessus

Nvd

Node

jenkins support_coreRange≤2.72jenkins

Source	Link
jenkins	www.jenkins.io/security/advisory/2021-02-24/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Feb 2021 16:15Current

CVSS25

CVSS35.3

EPSS0.00089

CWE-200