CVE-2019-14995

2019-09-11T14:15:00
ID CVE-2019-14995
Type cve
Reporter cve@mitre.org
Modified 2019-09-16T19:15:00

Description

The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing permissions check.