2 matches found
Authorization Bypass
Jenkins is vulnerable to authorization bypass. Improperly validation of the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...
CVE-2021-21606
Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...