Jira Server@8.5.3 Security Vulnerabilities and Issues — Jira Server@8.5.3 CVE List

Lucene search

AtlassianJira Server8.5.3

2 matches found

CVE•added 2020/02/06 3:15 a.m.•98 views

CVE-2019-20400

The usage of Tomcat in Jira before version 8.5.2 allows local attackers with permission to write a dll file to a directory in the global path environmental variable can inject code into via a DLL hijacking vulnerability.

7.8CVSS7.4AI score0.00145EPSS

CVE•added 2020/02/06 3:15 a.m.•96 views

CVE-2019-20401

Various installation setup resources in Jira before version 8.5.2 allow remote attackers to configure a Jira instance, which has not yet finished being installed, via Cross-site request forgery (CSRF) vulnerabilities.

6.5CVSS6.6AI score0.00325EPSS