Jira Server@8.7.0 Security Vulnerabilities and Issues — Jira Server@8.7.0 CVE List

Lucene search

AtlassianJira Server8.7.0

3 matches found

CVE•added 2020/07/03 2:15 a.m.•79 views

CVE-2020-14173

The file upload feature in Atlassian Jira Server and Data Center in affected versions allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability. The affected versions are before version 8.5.4, from version 8.6.0 before 8.6.2, and from version 8.7....

5.4CVSS5.3AI score0.0028EPSS

CVE•added 2021/10/26 5:15 a.m.•73 views

CVE-2021-41308

Affected versions of Atlassian Jira Server and Data Center allow authenticated yet non-administrator remote attackers to edit the File Replication settings via a Broken Access Control vulnerability in the ReplicationSettings!default.jspa endpoint. The affected versions are before version 8.6.0, fro...

6.5CVSS6.3AI score0.00243EPSS

CVE•added 2020/07/13 1:15 a.m.•51 views

CVE-2019-20897

The avatar upload feature in affected versions of Atlassian Jira Server and Data Center allows remote attackers to achieve Denial of Service via a crafted PNG file. The affected versions are before version 8.5.4, from version 8.6.0 before 8.6.2, and from version 8.7.0 before 8.7.1.

6.5CVSS6.2AI score0.0083EPSS