Jenkins Update
1566Warning Date
Severity Level
Warning Number
Target Sector
12 May, 2021
● High
2021-2910
All
Description:
Jenkins has released a security update to address a vulnerability in the following product:
- Credentials Plugin
- Dashboard View Plugin
- P4 Plugin
- S3 publisher Plugin
- Xcode integration Plugin
- Xray - Test Management for Jira Plugin
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
Best practice and Recommendations:
The CERT team encourages users to review Jenkins security advisory and apply the necessary update: