CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Jenkins Security Advisory 2021-11-12

unknownCVE-2021-21699CVE-2021-21700CVE-2021-21701CVE-2021-43576CVE-2021-43577CVE-2021-43578
Affects plugin: Active Choices Affects plugin: OWASP Dependency-Check Affects plugin: Performance Affects plugin: pom2config Affects plugin: Scriptler Affects plugin: Squash TM Publisher (Squash4Jenkins)

Details

Source
Jenkins Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2021-11-12
Exploitation
Not in CISA KEV at last sync

Original advisory: https://www.jenkins.io/security/advisory/2021-11-12/

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2021-21699coverage & exploitation statusNVD · CVE.org
CVE-2021-21700coverage & exploitation statusNVD · CVE.org
CVE-2021-21701coverage & exploitation statusNVD · CVE.org
CVE-2021-43576coverage & exploitation statusNVD · CVE.org
CVE-2021-43577coverage & exploitation statusNVD · CVE.org
CVE-2021-43578coverage & exploitation statusNVD · CVE.org

More from Jenkins Security Advisories