CVE-2021-21671

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-21671
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-21671.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-21671
Aliases
Related
Published
2021-06-30T17:15:08Z
Modified
2024-09-03T03:41:09.507643Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Jenkins 2.299 and earlier, LTS 2.289.1 and earlier does not invalidate the previous session on login.

References

Affected packages

Git / github.com/jenkinsci/jenkins

Affected ranges

Type
GIT
Repo
https://github.com/jenkinsci/jenkins
Events

Affected versions

jenkins-2.*

jenkins-2.266
jenkins-2.267
jenkins-2.268
jenkins-2.269
jenkins-2.270
jenkins-2.271
jenkins-2.272
jenkins-2.273
jenkins-2.274
jenkins-2.275
jenkins-2.276
jenkins-2.277
jenkins-2.278
jenkins-2.279
jenkins-2.280
jenkins-2.281
jenkins-2.282
jenkins-2.283
jenkins-2.284
jenkins-2.285
jenkins-2.286
jenkins-2.287
jenkins-2.288
jenkins-2.289
jenkins-2.290
jenkins-2.291
jenkins-2.292
jenkins-2.293
jenkins-2.294
jenkins-2.295
jenkins-2.296
jenkins-2.297
jenkins-2.298
jenkins-2.299