According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is prior to 8.5.7. It is, therefore, affected by multiple vulnerabilities:
A vulnerability which permits remote attackers to access outgoing emails between a Jira instance and the SMTP server via man-in-the-middle (MITM) vulnerability (CVE-2020-14168).
A flaw which permits remote attackers to impact the application’s availability via a Denial of Service (DoS) vulnerability in Dashboard & Gadgets (CVE-2020-14167).
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data