4 matches found
CVE-2021-21647
Jenkins CloudBees CD Plugin 1.1.21 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Item/Read permission to schedule builds of projects without having Item/Build permission...
CVE-2021-21647
Jenkins CloudBees CD Plugin 1.1.21 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Item/Read permission to schedule builds of projects without having Item/Build permission...
CVE-2021-21647
Jenkins CloudBees CD Plugin 1.1.21 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Item/Read permission to schedule builds of projects without having Item/Build permission...
CVE-2021-21647
CVE-2021-21647 affects Jenkins CloudBees CD Plugin 1.1.21 and earlier. The root cause is a missing permission check on an HTTP endpoint, which allows attackers with Item/Read permission to schedule builds for projects without having Item/Build permission. Documented impact is that unauthorized us...