Lucene search
+L

5 matches found

nessus
nessus
added 2022/07/06 12:0 a.m.27 views

Atlassian Jira 8.15.x < 8.16.0 XSRF (JRASERVER-72761)

The version of Atlassian Jira installed on the remote host is prior to 8.15.x 8.16.0. It is, therefore, affected by a vulnerability as referenced in the JRASERVER-72761 advisory. - Replay attack via the CSRF failure retry form - CVE-2021-39124 CVE-2021-39124 Note that Nessus has not tested for th...

4.3CVSS5.3AI score0.00528EPSS
Exploits0References2
nvd
nvd
added 2021/09/14 5:15 a.m.18 views

CVE-2021-39124

The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...

4.3CVSS0.00528EPSS
Exploits0References1
cvelist
cvelist
added 2021/09/14 4:20 a.m.19 views

CVE-2021-39124

The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...

5.1AI score0.00528EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2021/09/14 4:20 a.m.11 views

CVE-2021-39124

The Cross-Site Request Forgery CSRF failure retry feature of Atlassian Jira Server and Data Center before version 8.16.0 allows remote attackers who are able to trick a user into retrying a request to bypass CSRF protection and replay a crafted request...

7.3AI score0.00528EPSS
Exploits0References1
cve
cve
added 2021/09/14 4:20 a.m.79 views

CVE-2021-39124

Atlassian Jira Server and Data Center are affected prior to 8.16.0 by a CSRF failure retry feature that lets remote attackers trick a user into retrying a request, bypassing CSRF protection and replaying a crafted request. Affected versions:

4.3CVSS5.1AI score0.00528EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder