CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21678

Jenkins SAML Plugin 2.0.7 and earlier allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

Products affected by CVE-2021-21678

Jenkins » Saml » Version: 1.1.3

cpe:2.3:a:jenkins:saml:1.1.3
Jenkins » Saml » Version: 1.1.4

cpe:2.3:a:jenkins:saml:1.1.4
Jenkins » Saml » Version: 1.1.5

cpe:2.3:a:jenkins:saml:1.1.5
Jenkins » Saml » Version: 1.1.6

cpe:2.3:a:jenkins:saml:1.1.6
Jenkins » Saml » Version: 1.1.7

cpe:2.3:a:jenkins:saml:1.1.7
Jenkins » Saml » Version: 1.1.8

cpe:2.3:a:jenkins:saml:1.1.8
Jenkins » Saml » Version: 2.0.0

cpe:2.3:a:jenkins:saml:2.0.0
Jenkins » Saml » Version: 2.0.1

cpe:2.3:a:jenkins:saml:2.0.1
Jenkins » Saml » Version: 2.0.2

cpe:2.3:a:jenkins:saml:2.0.2
Jenkins » Saml » Version: 2.0.3

cpe:2.3:a:jenkins:saml:2.0.3
Jenkins » Saml » Version: 2.0.3.1

cpe:2.3:a:jenkins:saml:2.0.3.1
Jenkins » Saml » Version: 2.0.5

cpe:2.3:a:jenkins:saml:2.0.5
Jenkins » Saml » Version: 2.0.6

cpe:2.3:a:jenkins:saml:2.0.6
Jenkins » Saml » Version: 2.0.7

cpe:2.3:a:jenkins:saml:2.0.7

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved