Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2019/08/29 12:0 a.m.41 views

Atlassian JIRA worklog Information Disclosure

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to 7.3.17, or 8.0.x prior to 8.3.2. It is, therefore, affected by an information disclosure vulnerability. An authenticated, remote attacker can exploit this to disclose...

5.3CVSS5.7AI score0.02711EPSS
Exploits0References2
CVE
CVE
added 2019/08/23 1:49 p.m.68 views

CVE-2019-8445

CVE-2019-8445 is an Atlassian Jira worklog information disclosure vulnerability. TALOS reports that Jira versions 7.6.4 through 8.1.0 are affected and that authenticated users can view worklog details via the REST endpoint /rest/api/2/worklog/list due to a missing permissions check. The vulnerabi...

5.3CVSS5.2AI score0.02711EPSS
Exploits0References2Affected Software1
Atlassian
Atlassian
added 2019/08/09 3:27 a.m.58 views

Missing permission check in several worklog rest resources - CVE-2019-8445

Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...

5.3CVSS5.4AI score0.02711EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2019/08/09 3:27 a.m.37 views

Missing permission check in several worklog rest resources - CVE-2019-8445

Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check...

5.3CVSS5.3AI score0.02711EPSS
Exploits0
Rows per page
Query Builder