CVE-2021-21606

Improper Input Validation in maven/org.jenkins-ci.main/jenkins-core

Identifiers

CVE-2021-21606

Package Slug

maven/org.jenkins-ci.main/jenkins-core

Vulnerability

Improper Input Validation

Description

Jenkins improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path.

Affected Versions

All versions after 2.263.1 up to 2.274

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-01-18

source