Lucene search
AtlassianCVELIST:CVE-2021-41313HistoryOct 26, 2021 - 12:00 a.m.
CVE-2021-41313
2021-10-2600:00:00
CWE-285
atlassian
www.cve.org
Affected versions of Atlassian Jira Server and Data Center allow authenticated but non-admin remote attackers to edit email batch configurations via an Improper Authorization vulnerability in the /secure/admin/ConfigureBatching!default.jspa endpoint. The affected versions are before version 8.20.7.
CNA Affected
[
{
"vendor": "Atlassian",
"product": "Jira Server",
"versions": [
{
"version": "unspecified",
"lessThan": "8.20.7",
"status": "affected",
"versionType": "custom"
}
]
},
{
"vendor": "Atlassian",
"product": "Jira Data Center",
"versions": [
{
"version": "unspecified",
"lessThan": "8.20.7",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
Atlassian Jira Access Control Error Vulnerability (CNVD-2022-05447)
2021-11-04 00:00:00
atlassian
atlassian
nvd
nvd
CVE-2021-41313
2021-11-01 03:15:06
prion
prion
Authorization
2021-11-01 03:15:00
cve
cve
CVE-2021-41313
2021-11-01 03:15:06
nessus
nessus
Atlassian Jira 8.5.x < 8.20.1 / 8.21.0 (JRASERVER-72898)
2022-07-06 00:00:00