CVE-2021-21605
Aliases:GHSA-pxgq-gqr9-5gwxBIT-jenkins-2021-21605
Advisory lineage Upstream: 0 Downstream: 3
Downstream
Modified
Published: 13 Jan 2021, 15:55
Last modified:03 Aug 2024, 18:16
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8 HIGH
v3.1 (nvd)
EPSS Score
0.63% LOW
1% probability +0.19%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
13 Jan 2021, 15:55
Published
Vulnerability first disclosed
03 Aug 2024, 18:16
Last Modified
Vulnerability information updated
Description
Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows users with Agent/Configure permission to choose agent names that cause Jenkins to override the global `config.xml` file.
CVSS Metrics
- v3.1•HIGH•Score: 8CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
- v2.0•MEDIUM•Score: 6AV:N/AC:M/Au:S/C:P/I:P/A:P
EPSS Trends
Current EPSS score: 0.63%• Percentile: 71%
Techniques & Countermeasures
- CWE-22•Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Affected Systems
- jenkins project•jenkins
≥ unspecified, ≤ 2.274 | ≥ unspecified, ≤ LTS 2.263.1
- Unknown•Jenkins
≤ 2.263.1 | ≤ 2.274
- org.jenkins-ci.main•jenkins-core
< 2.263.2 | ≥ 2.264, < 2.275