Lucene search
AtlassianCVELIST:CVE-2017-18104HistoryJul 24, 2018 - 1:00 p.m.
CVE-2017-18104
2018-07-2413:00:00
atlassian
www.cve.org
4
The Webhooks component of Atlassian Jira before version 7.6.7 and from version 7.7.0 before version 7.11.0 allows remote attackers who are able to observe or otherwise intercept webhook events to learn information about changes in issues that should not be sent because they are not contained within the results of a specified JQL query.
CNA Affected
[
{
"product": "Jira",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "7.6.7",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "7.7.0",
"versionType": "custom"
},
{
"lessThan": "7.11.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
atlassian
atlassian
prion
prion
Design/Logic Flaw
2018-07-24 13:29:00
cve
cve
CVE-2017-18104
2018-07-24 13:29:00
nvd
nvd
CVE-2017-18104
2018-07-24 13:29:00
nessus
nessus
Atlassian JIRA < 7.6.7 / 7.7.x < 7.11.0 Information Disclosure
2019-03-05 00:00:00