VDB

BIT-jenkins-2021-21602

BIT-jenkins-2021-21602 PUBLISHED CVSS 6.5 MEDIUM

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows reading arbitrary files using the file browser for workspaces and archived artifacts by following symlinks.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
Bitnamijenkins0, 0, 0

Timeline

  • Mar 6, 2024 CVE Published
  • Apr 3, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›