Количество 2
Количество 2
CVE-2021-21650
Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain information about artifacts uploaded to S3, if the optional Run/Artifacts permission is enabled.
GHSA-fvfc-8pqr-wjpv
Missing Authorization in Jenkins S3 publisher Plugin
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-21650 Jenkins S3 publisher Plugin 0.11.6 and earlier does not perform Run/Artifacts permission checks in various HTTP endpoints and API models, allowing attackers with Item/Read permission to obtain information about artifacts uploaded to S3, if the optional Run/Artifacts permission is enabled. | CVSS3: 4.3 | 0% Низкий | больше 4 лет назад |
| GHSA-fvfc-8pqr-wjpv Missing Authorization in Jenkins S3 publisher Plugin | CVSS3: 4.3 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу