Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2021-21690 - Vulnerability Database
            
		
	
    
                    Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2021-21690
            
    
        
								Critical
					
					        
        
            Reference:
            
                                CVE-2021-21690
            
        
                    
        
        
            Title:
            Jenkins Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
        
        
            Overview:
            Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path in Jenkins 2.318 and earlier LTS 2.303.2 and earlier.