CVE-2021-21664 – An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier all …

10 June 2021

Vuln ID: CVE-2021-21664

Published: 2021-06-10 15:15:08Z

Description: An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Generic Create permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing Username/password credentials stored in Jenkins.

Source: NVD.NIST.GOV

Date:

10 June 2021

Categorie(s):

NVD

Tag(s):

NVD

Second time lucky for Thoma Bravo, which scoops up Darktrace for $5.3B26 April 2024
AI sparks increasing cyber concerns for execs amid growing adoption26 April 2024
More details on rural water system breach sought by legislators26 April 2024
Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug26 April 2024
Severe Flaws Disclosed in Brocade SANnav SAN Management Software26 April 2024