CVE-2021-21674

Summary

A missing permission check in Jenkins requests-plugin Plugin 2.2.6 and earlier allows attackers with Overall/Read permission to view the list of pending requests.

Affected Software

VendorProductVersion RangeStatus
Jenkins projectJenkins requests-plugin Pluginunspecified <= 2.2.6affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References