CVE-2021-21698
MEDIUM6.5EPSS 3.7%Path traversal vulnerability in Jenkins Subversion Plugin allows reading arbitrary files
發布日:2022/5/24修改日:2024/2/16
描述
Subversion Plugin 2.15.0 and earlier does not restrict the name of a file when looking up a subversion key file on the controller from an agent. This allows attackers able to control agent processes to read arbitrary files on the Jenkins controller file system. Subversion Plugin 2.15.1 checks for the presence of and prohibits directory separator characters as part of the file name, restricting it to the intended directory.
受影響套件(1)
- Maven/org.jenkins-ci.plugins:subversionfrom 0, < 2.15.1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
參考連結(5)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-21698
- PATCHhttps://github.com/jenkinsci/subversion-plugin
- WEBhttps://github.com/jenkinsci/subversion-plugin/commit/7d1525edea6641a2febd3f7deeac55c0a89b0d7e
- WEBhttps://www.jenkins.io/security/advisory/2021-11-04/#SECURITY-2506
- WEBhttp://www.openwall.com/lists/oss-security/2021/11/04/3