CVE-2021-21698
Summary
| CVE | CVE-2021-21698 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-11-04 17:15:00 UTC |
|---|
| Updated | 2023-11-22 21:22:00 UTC |
|---|
| Description | Jenkins Subversion Plugin 2.15.0 and earlier does not restrict the name of a file when looking up a subversion key file on the controller from an agent. |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Application |
Jenkins |
Subversion |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| Jenkins Security Advisory 2021-11-04 |
CONFIRM |
www.jenkins.io |
|
| oss-security - Multiple vulnerabilities in Jenkins and Jenkins plugins |
MLIST |
www.openwall.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 239919 Red Hat Update for OpenShift Container Platform 4.9.9 (RHSA-2021:4833)
- 239920 Red Hat OpenShift Container Platform 4.7 Security Update (RHSA-2021:4801)
- 239925 Red Hat OpenShift Container Platform 4.6 Security Update (RHSA-2021:4799)
- 239929 Red Hat OpenShift Container Platform 569 Security Update (RHSA-2021:4827)
- 239937 Red Hat Update for OpenShift Container Platform 4.8.22 (RHSA-2021:4829)
- 690231 Free Berkeley Software Distribution (FreeBSD) Security Update for jenkins (2bf56269-90f8-4a82-b82f-c0e289f2a0dc)
- 730254 Jenkins Core Multiple Security Vulnerabilities (Jenkins Security Advisory 2021-11-04)
- 770125 Red Hat OpenShift Container Platform 4.7 Security Update (RHSA-2021:4801)
- 770126 Red Hat OpenShift Container Platform 4.6 Security Update (RHSA-2021:4799)
- 770127 Red Hat OpenShift Container Platform 4.9 Security Update (RHSA-2021:4833)
- 770128 Red Hat OpenShift Container Platform 4.8 Security Update (RHSA-2021:4829)
