CVE-2021-21650

CVE-2021-21650

Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain information about artifacts uploaded to S3, if the optional Run/Artifacts permission is enabled.

Source: CVE-2021-21650

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다