Lucene search

K
prionPRIOn knowledge basePRION:CVE-2019-14995
HistorySep 11, 2019 - 2:15 p.m.

Design/Logic Flaw

2019-09-1114:15:00
PRIOn knowledge base
www.prio-n.com
4

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.9%

The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing permissions check.

CPENameOperatorVersion
jira_serverge7.6.0
jira_serverlt8.4.0

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.9%