CVE-2021-21688

Aliases:GHSA-m9hr-259f-2v23BIT-jenkins-2021-21688

Advisory lineage Upstream: 0 Downstream: 5

Downstream

RHSA-2021:4799 RHSA-2021:4801 RHSA-2021:4827 RHSA-2021:4829 RHSA-2021:4833

Modified

Published: 04 Nov 2021, 16:30

Last modified:03 Aug 2024, 18:23

Vulnerability Summary

Overall Risk (default)

medium

30/100

CVSS Score

7.5 HIGH

v3.1 (nvd)

EPSS Score

0.35% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

04 Nov 2021, 16:30

Published

Vulnerability first disclosed

03 Aug 2024, 18:23

Last Modified

Vulnerability information updated

Description

The agent-to-controller security check FilePath#reading(FileVisitor) in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not reject any operations, allowing users to have unrestricted read access using certain operations (creating archives, FilePath#copyRecursiveTo).

CVSS Metrics

v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
v3.1•CRITICAL•Score: 9CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.35%• Percentile: 58%

Techniques & Countermeasures

CWE-862•Missing Authorization
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

Affected Systems

jenkins project•jenkins
≥ unspecified, ≤ 2.318 | ≥ unspecified, ≤ LTS 2.303.2
Unknown•Jenkins
< 2.303.3 | < 2.319
org.jenkins-ci.main•jenkins-core
< 2.303.3 | ≥ 2.304, < 2.319