Description
A cross-site request forgery (CSRF) vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations.
Remediation
References
http://www.openwall.com/lists/oss-security/2021/02/24/3
https://www.jenkins.io/security/advisory/2021-02-24/#SECURITY-2003
Related Vulnerabilities
CVE-2021-42010 Vulnerability in maven package org.apache.heron:heron-api
CVE-2021-21685 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2019-10305 Vulnerability in maven package com.xebialabs.xl-deploy:jenkins-dependendencies
CVE-2019-10277 Vulnerability in maven package hudson.plugins:starteam
CVE-2019-10392 Vulnerability in maven package org.jenkins-ci.plugins:git-client