-
Bug
-
Resolution: Fixed
-
Low (View bug fix roadmap)
-
7.13.1, 8.7.0, 8.6.1, 8.5.4, 8.8.0, 8.7.1
-
7.13
-
Severity 2 - Major
-
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate project names via an improper authorization vulnerability in the /rest/project-templates/1.0/createshared endpoint API endpoint.
Affected versions:
- version < 8.5.5
- 8.6.0 ≤ version < 8.7.2
- 8.8.0 ≤ version < 8.8.1
Fixed versions:
- 8.5.5
- 8.7.2
- 8.8.1
- 8.9.0
- relates to
-
VULN-616389 Failed to load
Improper authorization on /rest/project-templates/1.0/createshared endpoint - CVE-2020-4029
-
-
Resolution: Fixed
-
Low
-
7.13.1, 8.7.0, 8.6.1, 8.5.4, 8.8.0, 8.7.1
-
7.13
-
Severity 2 - Major
-
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate project names via an improper authorization vulnerability in the /rest/project-templates/1.0/createshared endpoint API endpoint.
Affected versions:
- version < 8.5.5
- 8.6.0 ≤ version < 8.7.2
- 8.8.0 ≤ version < 8.8.1
Fixed versions:
- 8.5.5
- 8.7.2
- 8.8.1
- 8.9.0
- relates to
-
VULN-616389 Loading...
-
Unassigned
-
Security Metrics Bot
- Votes:
-
0 Vote for this issue
- Watchers:
-
1 Start watching this issue
- Created:
- Updated:
- Resolved: