CVE-2021-21621
N/A
N/A
Summary
Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication details only)" information, which can include the session ID of the user creating the support bundle in some configurations.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Jenkins project | Jenkins Support Core Plugin | unspecified <= 2.72 | affected |
| Jenkins project | Jenkins Support Core Plugin | 2.70.1 | unaffected |
| Jenkins project | Jenkins Support Core Plugin | 2.68.1 | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.