CVE-2021-21671 | Vulnerability Database | Aqua Security

NVD

CWE

Jenkins 2.299 and earlier, LTS 2.289.1 and earlier does not invalidate the previous session on login.

Name	Vendor	Start Version	End Version
Jenkins	Jenkins	2.266 (including)	2.300 (excluding)
Jenkins	Jenkins	2.277.1 (including)	2.289.2 (excluding)
Red Hat OpenShift Container Platform 4.6	RedHat	jenkins-0:2.289.2.1629437819-1.el8	*
Red Hat OpenShift Container Platform 4.7	RedHat	jenkins-0:2.289.2.1628252553-1.el8	*
Red Hat OpenShift Container Platform 4.8	RedHat	jenkins-0:2.289.3.1633554819-1.el8	*