Loading...

Log In
Published

XML

Word

Printable

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 8.19.0
Affects Version/s: 8.5.17, 8.13.9, 8.16.1, 8.18.1
Component/s: None
Labels:

CVSS Score:
5.3
CVSS Severity:
Medium
CVE ID:
CVE-2021-39118

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to discover the usernames and full names of users via an enumeration vulnerability in the /rest/api/1.0/render endpoint.

The affected versions are before version 8.19.0.

*Affected versions:*

version < 8.19.0

*Fixed versions:*

8.19.0

mentioned in: Page Loading...; Page Loading...; Page Loading...

Assignee:: Unassigned
Reporter:: Security Metrics Bot
Votes:: 0 Vote for this issue
Watchers:: 7 Start watching this issue

Created:: 25/Aug/2021 1:06 AM
Updated:: 21/Feb/2023 3:40 PM
Resolved:: 14/Sep/2021 4:54 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates