Lucene search
K

3 matches found

Tenable Nessus
Tenable Nessus
added 2023/03/06 12:0 a.m.21 views

Atlassian Jira Service Management 4.14.x < 4.20.8 Internal Network Leakage Service-Side Request Forgery

According to its self-reported version number, the Atlassian Jira Service Desk application running on the remote host is version 4.14.x prior to 4.2.8 or 4.21.x prior to 4.22.2. It is, therefore, affected by a flaw which may allow authenticated remote attackers to access the content of internal...

5.7CVSS7.1AI score0.00602EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/06 12:0 a.m.17 views

Atlassian Jira Service Management 4.21.x < 4.22.2 Internal Network Leakage Service-Side Request Forgery

According to its self-reported version number, the Atlassian Jira Service Desk application running on the remote host is version 4.14.x prior to 4.2.8 or 4.21.x prior to 4.22.2. It is, therefore, affected by a flaw which may allow authenticated remote attackers to access the content of internal...

5.7CVSS7.1AI score0.00602EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/12/24 12:0 a.m.5 views

The CSV import function in JSM Insight’s data processing center for Atlassian Jira Server and Data Center is vulnerable, allowing attackers to perform SSRF attacks.

The vulnerability of the CSV import function in JSM Insight, a data processing tool for Atlassian Jira Server and Data Center, is related to insufficient validation of requests at the server side. Exploiting this vulnerability could allow a malicious actor to perform an SSRF attack remotely...

6.8CVSS6AI score0.00602EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder