Lucene search
Security-metrics-botATLASSIAN:JRASERVER-70564HistoryJan 29, 2020 - 11:18 p.m.
Improper authorization on support files vulnerability in Jira - CVE-2019-20402
2020-01-2923:18:07
security-metrics-bot
jira.atlassian.com
13
0.001 Low
EPSS
Percentile
22.9%
Support zip files in Atlassian Jira Server and Data Center before version 8.6.0 could be downloaded by a System Administrator user without requiring the user to re-enter their password via an improper authorization vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jira server and data center | lt | 8.6.0 | |
| jira server and data center | lt | 8.5.4 | |
| jira server and data center | le | 8.2.3 |
Related
nvd
nvd
CVE-2019-20402
2020-02-06 03:15:10
atlassian
atlassian
prion
prion
Authorization
2020-02-06 03:15:00
cve
cve
CVE-2019-20402
2020-02-06 03:15:10
cvelist
cvelist
CVE-2019-20402
2020-02-04 00:00:00
nessus
nessus