Details
-
Bug
-
Resolution: Fixed
-
Low
-
7.13.9, 8.8.0, 8.8.1
-
7.13
-
Severity 3 - Minor
-
Description
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate project keys via an Information Disclosure vulnerability in the /browse.PROJECTKEY endpoint.
Affected versions:
- version < 7.13.17
- 7.14.0 ≤ version < 8.5.8
- 8.6.0 ≤ version < 8.12.0
Fixed versions:
- 7.13.17
- 8.5.8
- 8.12.0
- 8.13.0