AVG-2449 log
| Package | jenkins |
| Status | Not affected |
| Severity | Medium |
| Type | directory traversal |
| Affected | 2.314-1 |
| Fixed | Not affected |
| Current | 2.485-1 [extra] |
| Ticket | None |
| Created | Thu Oct 7 07:01:43 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-21683 | Medium | Yes | Directory traversal | The file browser in Jenkins 2.314 and earlier may interpret some paths to files as absolute on Windows, resulting in a path traversal vulnerability allowing... |
| CVE-2021-21682 | Medium | Yes | Directory traversal | Jenkins 2.314 and earlier accepts names of jobs and other entities with a trailing dot character, potentially replacing the configuration and data of other... |