Jira Server@7.6.15 Security Vulnerabilities and Issues — Jira Server@7.6.15 CVE List

Lucene search

AtlassianJira Server7.6.15

3 matches found

CVE•added 2020/02/06 3:15 a.m.•96 views

CVE-2019-20401

Various installation setup resources in Jira before version 8.5.2 allow remote attackers to configure a Jira instance, which has not yet finished being installed, via Cross-site request forgery (CSRF) vulnerabilities.

6.5CVSS6.6AI score0.00325EPSS

CVE•added 2020/02/12 2:15 p.m.•68 views

CVE-2019-20098

The VerifySmtpServerConnection!add.jspa component in Atlassian Jira Server and Data Center before version 8.7.0 is vulnerable to cross-site request forgery (CSRF). An attacker could exploit this by tricking an administrative user into making malicious HTTP requests, allowing the attacker to enumera...

4.3CVSS4.5AI score0.0093EPSS

CVE•added 2020/02/12 2:15 p.m.•65 views

CVE-2019-20099

The VerifyPopServerConnection!add.jspa component in Atlassian Jira Server and Data Center before version 8.7.0 is vulnerable to cross-site request forgery (CSRF). An attacker could exploit this by tricking an administrative user into making malicious HTTP requests, allowing the attacker to enumerat...

4.3CVSS4.5AI score0.00307EPSS