3 matches found
CVE-2019-20106
Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticket to which they do not have commenting permissions via a broken access control bug...
CVE-2019-20106
CVE-2019-20106 affects Atlassian Jira Server/Data Center where its comment feature allows remote attackers to post comments on tickets they lack commenting permissions due to a broken access control bug. The vulnerable ranges are: Jira Server/Data Center before 7.13.12; Jira 8.0.0–8.5.3; Jira 8.6...
CVE-2019-20106
Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticket to which they do not have commenting permissions via a broken access control bug...