CVE-2021-21605
maven/org.jenkins-ci.main/jenkins-core
Improper Input Validation
Jenkins allows users with Agent/Configure
permission to choose agent names that cause Jenkins to override the global config.xml
file.
All versions after 2.263.1 up to 2.274
Unfortunately, there is no solution available yet.
2021-01-20
source |