Loading...

XML

Word

Printable

Details

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 8.13.19, 8.20.7, 8.22.1
Affects Version/s: 8.5.0, 8.13.0
Component/s: Security
Labels:

CVSS Score:
4.3
CVSS Severity:
Medium
CVE ID:
CVE-2021-41313

Description

Affected versions of Atlassian Jira Server and Data Center allow authenticated but non-admin remote attackers to edit email batch configurations via an Improper Authorization vulnerability in the /secure/admin/ConfigureBatching!default.jspa endpoint.

The affected versions are before version 8.20.7.

Affected versions:

version < 8.20.7

Fixed versions:

8.20.7
8.21.0

Attachments

Issue Links

is related to: JSEC-1020 Loading...

mentioned in: Page Loading...; Page Loading...

Activity

People

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 25 Start watching this issue

Dates

Created:: 13/Oct/2021 6:33 AM

Updated:: 21/Feb/2023 3:40 PM

Resolved:: 01/Nov/2021 3:04 AM