A exposure of sensitive information vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in Computer.java that allows attackers With Overall/Read permission to access the connection log for any agent.
{
"versions": [
{
"introduced": "0"
},
{
"last_affected": "2.121.2"
},
{
"introduced": "0"
},
{
"last_affected": "2.137"
}
]
}