Details
-
Bug
-
Resolution: Fixed
-
Low
-
7.3.7, 7.9.2
-
7.03
-
Severity 2 - Major
-
Description
The version of moment.js used in in Jira before version 7.12.3, from version 7.13.0 before version 7.13.1 and before version 8.0.0 allows remote attackers to cause a denial of service in user's browsers via a regular expression denial of service. For additional details see https://github.com/moment/moment/issues/2936.
Attachments
Issue Links
- is related to
-
JSDSERVER-6289 The version of moment.js used in Jira Service Desk was vulnerable to a regular expression denial of service
- Closed
- mentioned in
-
Page Loading...