Security Advisory

CVE-2021-21673

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-30 16:45:20

Last updated 2024-08-03 18:23:29

Assigner jenkins

State PUBLISHED

Description

Jenkins CAS Plugin 1.6.0 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins, allowing attackers to perform phishing attacks.

← Browse all CVEs View on cve.org ↗