Lucene search

CVE-2020-36287

🗓️ 09 Apr 2021 02:12:15Reported by [email protected]Type

The Atlassian gadgets plugin in Jira Server and Jira Data Center before 8.13.5 and 8.14.0 through 8.15.1 allows remote attackers to obtain gadget setting

Reporter	Title	Published	Views	Family All 8
CVE	CVE-2020-36287	9 Apr 202102:15	–	cve
Atlassian	Anonymously accessible Dashboards can leak private information via configured gadgets - CVE-2020-36287	25 Mar 202103:53	–	atlassian
Atlassian	Anonymously accessible Dashboards can leak private information via configured gadgets - CVE-2020-36287	25 Mar 202103:53	–	atlassian
Check Point Advisories	Atlassian Jira Gadgets Plugin Authentication Bypass (CVE-2020-36287)	22 Sep 202100:00	–	checkpoint_advisories
Prion	Open redirect	9 Apr 202102:15	–	prion
CNVD	Atlassian Jira Server and Jira Data Center have unspecified vulnerabilities	22 Apr 202100:00	–	cnvd
Cvelist	CVE-2020-36287	9 Apr 202102:00	–	cvelist
GithubExploit	Exploit for Incorrect Authorization in Atlassian Data Center	2 Aug 202101:52	–	githubexploit

Nvd

Node

atlassian data_centerRange<8.13.5

atlassian jiraRange<8.13.5

atlassian jira_data_centerRange8.14.0–8.15.1

atlassian jira_serverRange8.14.0–8.15.1

Source	Link
jira	www.jira.atlassian.com/browse/JRASERVER-72258

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Apr 2021 02:15Current

CVSS25

CVSS35.3

EPSS0.00098