4 matches found
CVE-2021-21625
creationtimestamp| type| source ---|---|--- 2021-03-18 17:32:15+00:00| seen| https://t.me/cibsecurity/25100...
CVE-2021-21625
Jenkins CloudBees AWS Credentials Plugin 1.28 and earlier does not perform a permission check in a helper method for HTTP endpoints, allowing attackers with Overall/Read permission to enumerate credentials IDs of AWS credentials stored in Jenkins in some circumstances...
CVE-2021-21625
Jenkins CloudBees AWS Credentials Plugin 1.28 and earlier does not perform a permission check in a helper method for HTTP endpoints, allowing attackers with Overall/Read permission to enumerate credentials IDs of AWS credentials stored in Jenkins in some circumstances...
CVE-2021-21625
CVE-2021-21625 affects Jenkins CloudBees AWS Credentials Plugin, version 1.28 and earlier. The underlying issue is a missing permission check in a helper method for HTTP endpoints, enabling attackers with Overall/Read permission to enumerate AWS credentials IDs stored in Jenkins under certain con...