Loading...

XML

Word

Printable

Details

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 8.18.0, 8.18.1, 8.13.14, 8.13.19
Affects Version/s: 8.5.15, 8.13.7
Component/s: None
Labels:

CVSS Score:
4.3
CVSS Severity:
Medium
CVE ID:
CVE-2021-39120

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to learn when a restricted comment is removed from an issue via an information disclosure vulnerability in the comment notification functionality.

The affected versions are before version 8.18.0.

*Affected versions:*

version < 8.18.0

*Fixed versions:*

8.18.0

Attachments

Issue Links

is related to: JSEC-520 Loading...; JSEC-523 Loading...

mentioned in: Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 21 Start watching this issue

Dates

Created:: 02/Jul/2021 12:53 AM

Updated:: 28/Mar/2022 5:27 PM

Resolved:: 30/Aug/2021 3:43 AM