Lucene search
Security-metrics-botATLASSIAN:JRASERVER-72002HistoryJan 20, 2021 - 1:40 a.m.
Board metadata is viewable without permissions via IDOR - CVE-2020-36231
2021-01-2001:40:19
security-metrics-bot
jira.atlassian.com
20
0.001 Low
EPSS
Percentile
35.5%
Affected versions of Atlassian Jira Server and Data CenterΒ allow remote attackers to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnerability.
The affected versions are before version 8.5.10, and from version 8.6.0 before 8.13.2.
Affected versions:
- version < 8.5.10
- 8.6.0 β€ version < 8.13.2
Fixed versions:
- 8.5.10
- 8.13.2
- 8.14.0
Related
cve
cve
CVE-2020-36231
2021-02-02 00:15:12
atlassian
atlassian
Board metadata is viewable without permissions via IDOR - CVE-2020-36231
2021-01-20 01:40:19
cvelist
cvelist
CVE-2020-36231
2021-01-21 00:00:00
nessus
nessus
prion
prion
Spoofing
2021-02-02 00:15:00
nvd
nvd
CVE-2020-36231
2021-02-02 00:15:12