Vulnerabilities > Jenkins > Code Coverage API > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-31 CVE-2021-21677 Deserialization of Untrusted Data vulnerability in Jenkins Code Coverage API
Jenkins Code Coverage API Plugin 1.4.0 and earlier does not apply Jenkins JEP-200 deserialization protection to Java objects it deserializes from disk, resulting in a remote code execution vulnerability.
network
low complexity
jenkins CWE-502
8.8