Affected versions of Atlassian Jira Server and Data Center allow remote attackers to access sensitive information without being authenticated in the Global permissions screen.
Affected versions:
Fixed versions:
Workaround for Jira 8.5.x:
{{jira.restrict.anonymous.access.to.mypermissions.rest.api.enabled}}
CPE | Name | Operator | Version |
---|---|---|---|
jira server and data center | le | 7.13.11 | |
jira server and data center | lt | 8.8.0 |