Vulnerabilities > Jenkins > Cloud Statistics > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-03-30 CVE-2021-21631 Missing Authorization vulnerability in Jenkins Cloud Statistics
Jenkins Cloud Statistics Plugin 0.26 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission and knowledge of random activity IDs to view related provisioning exception error messages.
network
low complexity
jenkins CWE-862
4.3