According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 7.3.18, 8.x < 8.5.9 or 8.6.x < 8.12.1. It is, therefore, affected by an information disclosure vulnerability in the HTTP Response headers allowing a remote attacker with limited privileges to view a Jira instanceβs Support Entitlement Number (SEN).
Note that the scanner has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
No source data