Lucene search
Security-metrics-botATLASSIAN:JRASERVER-72898HistoryOct 13, 2021 - 6:33 a.m.
Privilege escalation leads unauthorized user to edit email batch configurations - CVE-2021-41313
2021-10-1306:33:19
security-metrics-bot
jira.atlassian.com
25
atlassian jira server
privilege escalation
unauthorized access
email configurations
cve-2021-41313
improper authorization
vulnerability
remote attackers
EPSS
0.001
Percentile
35.3%
Affected versions of Atlassian Jira Server and Data Center allow authenticated but non-admin remote attackers to edit email batch configurations via an Improper Authorization vulnerability in the /secure/admin/ConfigureBatching!default.jspa endpoint.
The affected versions are before version 8.21.0.
Affected versions:
- version < 8.21.0
Fixed versions:
- 8.21.0
Related
cnvd
cnvd
Atlassian Jira Access Control Error Vulnerability (CNVD-2022-05447)
2021-11-04 00:00:00
atlassian
atlassian
cvelist
cvelist
CVE-2021-41313
2021-11-01 03:05:09
nessus
nessus
Atlassian Jira 8.5.x < 8.20.1 / 8.21.0 (JRASERVER-72898)
2022-07-06 00:00:00
cve
cve
CVE-2021-41313
2021-11-01 03:15:06
prion
prion
Authorization
2021-11-01 03:15:00
nvd
nvd
CVE-2021-41313
2021-11-01 03:15:06