Vulnetix
Try Vulnetix Request Demo
CVE-2021-21688 PUBLISHED

The agent-to-controller security check FilePath#reading(FileVisitor) in Jenkins LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read access using certain operations (creating archives, FilePath#copyRecursiveTo).

EPSS 0.35% · 57.4th percentile

Risk Scores

EPSS Score
0.35%
57.4th percentile

Affected Products

VendorProductVersions
Bitnamijenkins0
Bitnamijenkins0

Timeline

References

Open in Interactive Console →