-
Public Security Vulnerability
-
Resolution: Fixed
-
Low
-
8.0.0, 8.5.0, 8.13.0, 8.14.0
-
None
-
5
-
Medium
-
CVE-2020-11022
Affected versions of Atlassian Jira Server and Data Center use a version of jQuery that is vulnerable to CVE-2020-11022 and CVE-2020-11023. These allow an unauthenticated attacker to inject Javascript into the application via Cross-Site Scripting (XSS) vulnerabilities.
The affected versions are before version 8.15.0.
Affected versions:
- version < 8.15.0
Fixed versions:
- 8.15.0
- is related to
-
JRASERVER-67820 Security vulnerabilities exist in Javascript libraries used in Jira Server (7.11.2)
- Gathering Interest
-
JSWSERVER-20505 Security vulnerabilities exist in Javascript libraries used in Jira Software (8.8.0)
- Gathering Interest
- mentioned in
-
Page Loading...