Lucene search
+L

5 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 5:45 p.m.6 views

org.jenkins-ci.plugins:dependency-check-jenkins-plugin (>=3.3.4 <=4.0.2) potentially affected by CVE-2021-21633 via org.jenkins-ci.plugins:dependency-track (=1.1.1)

org.jenkins-ci.plugins:dependency-track MAVEN version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.jenkins-ci.plugins:dependency-track and may be impacted: - org.jenkins-ci.plugins:dependency-check-jenkins-plugin =3.3.4, =4.0.2 Source cve...

8.8CVSS7.2AI score0.0077EPSS
Exploits0
NVD
NVD
added 2021/03/30 12:16 p.m.38 views

CVE-2021-21633

A cross-site request forgery CSRF vulnerability in Jenkins OWASP Dependency-Track Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL, capturing credentials stored in Jenkins...

8.8CVSS0.0077EPSS
Exploits0References2
CVE
CVE
added 2021/03/30 11:10 a.m.83 views

CVE-2021-21633

Summary (CVE-2021-21633) : A CSRF vulnerability in Jenkins OWASP Dependency-Track Plugin 3.1.0 and earlier allows an attacker to connect to an attacker-specified URL and capture credentials stored in Jenkins. The issue can be exploited by users with Overall/Read permission and does not require PO...

8.8CVSS8.6AI score0.0077EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/03/30 11:10 a.m.42 views

CVE-2021-21633

A cross-site request forgery CSRF vulnerability in Jenkins OWASP Dependency-Track Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL, capturing credentials stored in Jenkins...

8.9AI score0.0077EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2021/03/30 11:10 a.m.25 views

CVE-2021-21633

A cross-site request forgery CSRF vulnerability in Jenkins OWASP Dependency-Track Plugin 3.1.0 and earlier allows attackers to connect to an attacker-specified URL, capturing credentials stored in Jenkins...

8.8CVSS4.8AI score0.0077EPSS
Exploits0References2
Rows per page
Query Builder