CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2021-03-30

unknownCVE-2021-21628CVE-2021-21629CVE-2021-21630CVE-2021-21631CVE-2021-21632CVE-2021-21633
Affects plugin: Build With Parameters Affects plugin: Cloud Statistics Affects plugin: Extra Columns Affects plugin: Jabber (XMPP) notifier and control Affects plugin: OWASP Dependency-Track Affects plugin: REST List Parameter Affects plugin: Team Foundation Server

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2021-03-30
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2021-03-30/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2021-21628coverage & exploitation statusNVD · CVE.org
CVE-2021-21629coverage & exploitation statusNVD · CVE.org
CVE-2021-21630coverage & exploitation statusNVD · CVE.org
CVE-2021-21631coverage & exploitation statusNVD · CVE.org
CVE-2021-21632coverage & exploitation statusNVD · CVE.org
CVE-2021-21633coverage & exploitation statusNVD · CVE.org
CVE-2021-21634coverage & exploitation statusNVD · CVE.org
CVE-2021-21635coverage & exploitation statusNVD · CVE.org
CVE-2021-21636coverage & exploitation statusNVD · CVE.org
CVE-2021-21637coverage & exploitation statusNVD · CVE.org
CVE-2021-21638coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories