Lucene search
AtlassianCVELIST:CVE-2021-39119HistoryAug 30, 2021 - 12:00 a.m.
CVE-2021-39119
2021-08-3000:00:00
atlassian
www.cve.org
Affected versions of Atlassian Jira Server and Data Center allow users who have watched an issue to continue receiving updates on the issue even after their Jira account is revoked, via a Broken Access Control vulnerability in the issue notification feature. The affected versions are before version 8.19.0.
CNA Affected
[
{
"product": "Jira Server",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "8.19.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Jira Data Center",
"vendor": "Atlassian",
"versions": [
{
"lessThan": "8.19.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Improper access control
2021-09-01 23:15:00
nvd
nvd
CVE-2021-39119
2021-09-01 23:15:07
atlassian
atlassian
cve
cve
CVE-2021-39119
2021-09-01 23:15:07
nessus
nessus
Atlassian Jira < 8.19.0 Broken Access Control (JRASERVER-72737)
2022-01-27 00:00:00
Atlassian Jira < 8.19.0 Multiple Vulnerabilities
2021-09-10 00:00:00