VDB

BIT-jenkins-2021-21690

BIT-jenkins-2021-21690 PUBLISHED CVSS 9.800000190734863 CRITICAL

Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins LTS 2.303.2 and earlier.

Risk Scores

CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Bitnamijenkins0, 0, 0

Timeline

  • Mar 6, 2024 CVE Published
  • Apr 3, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›