Lucene search
Security-metrics-botATLASSIAN:JRASERVER-71107HistoryMay 28, 2020 - 5:13 a.m.
XSS in Issue - Attachments - CVE-2020-4022
2020-05-2805:13:20
security-metrics-bot
jira.atlassian.com
16
0.001 Low
EPSS
Percentile
45.0%
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in Issue attachments.
Affected versions:
- version < 8.5.5
- 8.6.0 ≤ version < 8.8.2
- 8.9.0 ≤ version < 8.9.1
Fixed versions:
- 8.5.5
- 8.8.2
- 8.9.1
- 8.10.0
Related
cve
cve
CVE-2020-4022
2020-07-01 02:15:12
atlassian
atlassian
XSS in Issue - Attachments - CVE-2020-4022
2020-05-28 05:13:20
nvd
nvd
CVE-2020-4022
2020-07-01 02:15:12
cvelist
cvelist
CVE-2020-4022
2020-07-01 00:00:00
prion
prion
Cross site scripting
2020-07-01 02:15:00
nessus
nessus
Atlassian Jira 8.0.7 < 8.5.5 Multiple Vulnerabilities
2023-03-14 00:00:00
Atlassian Jira 8.9.0 < 8.9.1 Multiple Vulnerabilities
2023-03-14 00:00:00
Atlassian Jira 8.6.0 < 8.8.2 Multiple Vulnerabilities
2023-03-14 00:00:00