CVE-2021-21621 is a vulnerability in Jenkins Support Core
Published on February 24, 2021

Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication details only)" information, which can include the session ID of the user creating the support bundle in some configurations.

NVD

Products Associated with CVE-2021-21621

Want to know whenever a new CVE is published for Jenkins Support Core? stack.watch will email you.

Jenkins Support Core

Affected Versions

Jenkins project Jenkins Support Core Plugin:

Version unspecified, <= 2.72 is affected.
Version 2.70.1 is unaffected.
Version 2.68.1 is unaffected.

Exploit Probability

EPSS

0.05%

Percentile

15.38%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-21621 is a vulnerability in Jenkins Support CorePublished on February 24, 2021

Products Associated with CVE-2021-21621

Affected Versions

Exploit Probability

CVE-2021-21621 is a vulnerability in Jenkins Support Core
Published on February 24, 2021