Lucene search
K

6 matches found

OSV
OSV
added 2019/12/18 4:15 a.m.4 views

CVE-2019-15013

The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a projec...

4.3CVSS5.8AI score0.0121EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/12/18 3:30 a.m.31 views

CVE-2019-15013

The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a projec...

4.4AI score0.0121EPSS
Exploits0References1
CVE
CVE
added 2019/12/18 3:30 a.m.128 views

CVE-2019-15013

CVE-2019-15013 affects Atlassian Jira. The issue is in the WorkflowResource.removeStatus path, allowing authenticated remote attackers who do not have project administration access to remove a configured issue status from a project due to a missing authorization check. Affected versions include J...

4.3CVSS4.4AI score0.0121EPSS
Exploits0References1Affected Software2
Atlassian
Atlassian
added 2019/12/16 10:14 p.m.92 views

Improper authorization check in the WorkflowResource class removeStatus method - CVE-2019-15013

The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a projec...

4.3CVSS6.1AI score0.0121EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2019/12/16 10:14 p.m.38 views

Improper authorization check in the WorkflowResource class removeStatus method - CVE-2019-15013

The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a projec...

4.3CVSS6.1AI score0.0121EPSS
Exploits0
Symantec
Symantec
added 2019/12/16 12:0 a.m.374 views

Atlassian JIRA CVE-2019-15013 Authorization Bypass Vulnerability

Description Atlassian JIRA is prone to an authorization-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. The following versions of Atlassian JIRA are affected: Versions pri...

0.6AI score0.0121EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder