CVE-2021-21606
Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path.Enginsight
Vendor | Product | Version |
---|---|---|
jenkins | jenkins | 𝑥 ≤ 2.263.1 |
jenkins | jenkins | 𝑥 ≤ 2.274 |
Common Weakness Enumeration