Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 4.12.0
Affects Version/s: 4.8.1
Component/s: API and Integrations
Labels:

Symptom Severity:
Severity 3 - Minor
Bug Fix Policy:
View Atlassian Server bug fix policy

Affected versions of Atlassian Jira Service Desk Server and Data Center allow remote attackers authenticated as a non-administrator user to view Project Request-Types and Descriptions, via an Information Disclosure vulnerability in the editform request-type-fields resource.

Affected versions:

version < 4.12.0

Fixed versions:

4.12.0

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Due:: 30/Sep/2020

Created:: 01/Jul/2020 6:16 PM

Updated:: 11/Jan/2022 3:33 PM

Resolved:: 26/Aug/2020 5:41 PM

Details

Description

Attachments

Forms

Activity

People

Dates