Loading...

XML

Word

Printable

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 8.5.14, 8.13.6, 8.16.1, 8.17.0
Affects Version/s: 8.5.13, 8.13.5
Component/s: None
Labels:

CVSS Score:
4.7
CVSS Severity:
Medium
CVE ID:
CVE-2021-26078

Affected versions of Jira Server and Jira Data Center have a XSS vulnerability in the number range searcher component which allows remote attackers to inject arbitrary HTML or JavaScript.

Affected versions:

versions < 8.5.14
8.6.0 ≤ version < 8.13.6
8.14.0 ≤ version < 8.16.1

Fixed versions:

8.5.14
8.13.6
8.16.1
8.17.0

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 06/May/2021 8:02 AM

Updated:: 01/Sep/2021 6:01 AM

Resolved:: 06/May/2021 4:17 PM

Details

Description

Attachments

Forms

Activity

People

Dates