CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2021-04-21

unknownCVE-2021-21642CVE-2021-21643CVE-2021-21644CVE-2021-21645CVE-2021-21646CVE-2021-21647
Affects plugin: CloudBees CD Affects plugin: Config File Provider Affects plugin: Templating Engine

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2021-04-21
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2021-04-21/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2021-21642coverage & exploitation statusNVD · CVE.org
CVE-2021-21643coverage & exploitation statusNVD · CVE.org
CVE-2021-21644coverage & exploitation statusNVD · CVE.org
CVE-2021-21645coverage & exploitation statusNVD · CVE.org
CVE-2021-21646coverage & exploitation statusNVD · CVE.org
CVE-2021-21647coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories