CVE-2021-21640

Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not properly check that a newly created view has an allowed name, allowing attackers with View/Create permission to create views with invalid or already-used names.
Configurations

Configuration 1

cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*
cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*

Information

Published : 2021-04-07 02:15

Updated : 2021-04-13 06:00


NVD link : CVE-2021-21640

Mitre link : CVE-2021-21640

Products Affected
No products.
CWE