← back
CVE-2021-21604

CVE-2021-21604

EPSS 1.7%
Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator.
Affected products
Jenkins project · Jenkins

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-1923