{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","type":"apk","namespace":"alpine","name":"jenkins","version":"2.275-r0","qualifiers":{"arch":"armv7","distroversion":"v3.13","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.281-r0","latest_non_vulnerable_version":"2.281-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46138?format=json","vulnerability_id":"VCID-1qek-uwt9-93dk","summary":"jenkins: Reflected XSS vulnerability in markup formatter preview","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21610.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21610.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21610","reference_id":"","reference_type":"","scores":[{"value":"0.00327","scoring_system":"epss","scoring_elements":"0.55868","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21610"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/89ec0c40b68cd1e4e9f9ef5ebcafd87e7fa16589","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/89ec0c40b68cd1e4e9f9ef5ebcafd87e7fa16589"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21610","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21610"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2153","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2153"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925151","reference_id":"1925151","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925151"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-7qf3-c2q8-69m3","reference_id":"GHSA-7qf3-c2q8-69m3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7qf3-c2q8-69m3"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21610","GHSA-7qf3-c2q8-69m3"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1qek-uwt9-93dk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46142?format=json","vulnerability_id":"VCID-2x19-k2ju-4kbj","summary":"jenkins: XSS vulnerability in notification bar","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21603.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21603.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21603","reference_id":"","reference_type":"","scores":[{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.5516","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21603"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/f5d98421604e44f398e7de9d222b191a705608af","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/f5d98421604e44f398e7de9d222b191a705608af"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21603","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21603"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-1889","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-1889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925160","reference_id":"1925160","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925160"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-98gq-6hxg-52r6","reference_id":"GHSA-98gq-6hxg-52r6","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-98gq-6hxg-52r6"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21603","GHSA-98gq-6hxg-52r6"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2x19-k2ju-4kbj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46129?format=json","vulnerability_id":"VCID-4zhy-55uw-3ubg","summary":"jenkins: Missing permission check for paths with specific prefix","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21609.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21609.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21609","reference_id":"","reference_type":"","scores":[{"value":"0.00149","scoring_system":"epss","scoring_elements":"0.35158","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21609"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/fe9091fc74d55a56fd36544f3038d47c8cb331a4","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/fe9091fc74d55a56fd36544f3038d47c8cb331a4"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21609","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21609"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2047","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2047"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925141","reference_id":"1925141","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925141"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-4625-q52w-39cx","reference_id":"GHSA-4625-q52w-39cx","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4625-q52w-39cx"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21609","GHSA-4625-q52w-39cx"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4zhy-55uw-3ubg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46141?format=json","vulnerability_id":"VCID-s1dm-24pr-aug9","summary":"jenkins: Arbitrary file existence check in file fingerprints","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21606.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21606.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21606","reference_id":"","reference_type":"","scores":[{"value":"0.00235","scoring_system":"epss","scoring_elements":"0.46461","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21606"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/f576b2eb4375f2bb076ce477cee27a946b65f22a","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/f576b2eb4375f2bb076ce477cee27a946b65f22a"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21606","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21606"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2023","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2023"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925159","reference_id":"1925159","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925159"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-f585-9fw3-rj2m","reference_id":"GHSA-f585-9fw3-rj2m","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f585-9fw3-rj2m"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21606","GHSA-f585-9fw3-rj2m"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s1dm-24pr-aug9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46140?format=json","vulnerability_id":"VCID-uews-aq2e-xqd2","summary":"jenkins: Improper handling of REST API XML deserialization errors","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21604.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21604.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21604","reference_id":"","reference_type":"","scores":[{"value":"0.00761","scoring_system":"epss","scoring_elements":"0.73662","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21604"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/f1056bd814fc1f19ea241a101d649b8c143807e7","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/f1056bd814fc1f19ea241a101d649b8c143807e7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21604","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21604"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-1923","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-1923"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925157","reference_id":"1925157","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925157"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-qv6f-rcv6-6q3x","reference_id":"GHSA-qv6f-rcv6-6q3x","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qv6f-rcv6-6q3x"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21604","GHSA-qv6f-rcv6-6q3x"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uews-aq2e-xqd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46128?format=json","vulnerability_id":"VCID-wfnj-hqda-hkgr","summary":"jenkins: Stored XSS vulnerability in button labels","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21608.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21608.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21608","reference_id":"","reference_type":"","scores":[{"value":"0.00319","scoring_system":"epss","scoring_elements":"0.5516","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21608"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/8c451b08886561a914ef0c30cbb9d40ea33a9bbe","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/8c451b08886561a914ef0c30cbb9d40ea33a9bbe"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21608","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21608"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2035","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2035"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925140","reference_id":"1925140","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925140"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-wv63-gwr9-5c55","reference_id":"GHSA-wv63-gwr9-5c55","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wv63-gwr9-5c55"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21608","GHSA-wv63-gwr9-5c55"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wfnj-hqda-hkgr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46139?format=json","vulnerability_id":"VCID-zcpt-56qw-kfeu","summary":"jenkins: Excessive memory allocation in graph URLs leads to denial of service","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21607.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-21607.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21607","reference_id":"","reference_type":"","scores":[{"value":"0.00275","scoring_system":"epss","scoring_elements":"0.51138","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-21607"},{"reference_url":"https://github.com/jenkinsci/jenkins","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins"},{"reference_url":"https://github.com/jenkinsci/jenkins/commit/a890d68699ad6ca0c8fbc297a1d4b7ebf23f384b","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/jenkinsci/jenkins/commit/a890d68699ad6ca0c8fbc297a1d4b7ebf23f384b"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21607","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-21607"},{"reference_url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2025","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.jenkins.io/security/advisory/2021-01-13/#SECURITY-2025"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925156","reference_id":"1925156","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925156"},{"reference_url":"https://security.archlinux.org/ASA-202101-41","reference_id":"ASA-202101-41","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202101-41"},{"reference_url":"https://security.archlinux.org/AVG-1446","reference_id":"AVG-1446","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1446"},{"reference_url":"https://github.com/advisories/GHSA-cxqw-vjcr-gp5g","reference_id":"GHSA-cxqw-vjcr-gp5g","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cxqw-vjcr-gp5g"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0423","reference_id":"RHSA-2021:0423","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0423"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0429","reference_id":"RHSA-2021:0429","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0429"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125383?format=json","purl":"pkg:apk/alpine/jenkins@2.275-r0?arch=armv7&distroversion=v3.13&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}],"aliases":["CVE-2021-21607","GHSA-cxqw-vjcr-gp5g"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zcpt-56qw-kfeu"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/jenkins@2.275-r0%3Farch=armv7&distroversion=v3.13&reponame=community"}