3 matches found
CVE-2021-21621
Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user basic authentication details only" information, which can include the session ID of the user creating the support bundle in some configurations...
CVE-2021-21621
creationtimestamp| type| source ---|---|--- 2021-02-24 18:36:59+00:00| seen| https://t.me/cibsecurity/24082...
CVE-2021-21621
CVE-2021-21621 concerns Jenkins Support Core Plugin (version 2.72 and earlier). The issue arises because the plugin includes serialized user authentication data as part of the support-bundle metadata (the “About user (basic authentication details only)” section), which in some configurations can ...