Jenkins Update
1757Warning Date
Severity Level
Warning Number
Target Sector
8 April, 2021
● Medium
2021-2733
All
Description:
Jenkins has released a security update to address a vulnerability in the following product:
- Jenkins weekly
- version 2.287
- Jenkins LTS
- version 2.277.2
- Micro Focus Application Automation Tools Plugin
- version 6.8
- promoted builds Plugin
- version 3.9.1
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review Jenkins security advisory and apply the necessary update: