Loading...

XML

Word

Printable

Details

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 8.19.0
Affects Version/s: 8.16.1, 8.5.17, 8.13.9, 8.18.1
Component/s: None
Labels:

CVSS Score:
5.3
CVSS Severity:
Medium
CVE ID:
CVE-2021-39118

Description

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to discover the usernames and full names of users via an enumeration vulnerability in the /rest/api/1.0/render endpoint.

The affected versions are before version 8.19.0.

*Affected versions:*

version < 8.19.0

*Fixed versions:*

8.19.0

Attachments

Issue Links

mentioned in: Page Loading...; Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 25/Aug/2021 1:06 AM

Updated:: 21/Feb/2023 3:40 PM

Resolved:: 14/Sep/2021 4:54 AM