Atlassian ≫ Jira Server

135 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

4.8

CVE-2020-4025

EPSS 0.34%
Veröffentlicht 01.07.2020 02:15:12
Zuletzt bearbeitet 21.11.2024 05:32:10

The attachment download resource in Atlassian Jira Server and Data Center The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to inje...

4.3

CVE-2020-4029

EPSS 0.39%
Veröffentlicht 01.07.2020 02:15:12
Zuletzt bearbeitet 21.11.2024 05:32:11

The /rest/project-templates/1.0/createshared resource in Atlassian Jira Server and Data Center before version 8.5.5, from 8.6.0 before 8.7.2, and from 8.8.0 before 8.8.1 allows remote attackers to enumerate project names via an improper authorization...

7.5

CVE-2020-14167

EPSS 0.92%
Veröffentlicht 01.07.2020 02:15:11
Zuletzt bearbeitet 21.11.2024 05:02:47

The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impact the application's availability via an Denial of S...

5.9

CVE-2020-14168

EPSS 0.39%
Veröffentlicht 01.07.2020 02:15:11
Zuletzt bearbeitet 21.11.2024 05:02:47

The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails between a Jira instance and the SMTP server via ma...

4.3

CVE-2019-20415

EPSS 0.23%
Veröffentlicht 30.06.2020 03:15:09
Zuletzt bearbeitet 21.11.2024 04:38:25

Atlassian Jira Server and Data Center in affected versions allows remote attackers to modify logging and profiling settings via a cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.3, and from version 8.0.0...

5.4

CVE-2019-20414

EPSS 0.4%
Veröffentlicht 29.06.2020 07:15:09
Zuletzt bearbeitet 21.11.2024 04:38:25

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in Issue Navigator Basic Search. The affected versions are before version 7.13.9, ...

6.5

CVE-2019-20410

EPSS 0.53%
Veröffentlicht 29.06.2020 06:15:10
Zuletzt bearbeitet 21.11.2024 04:38:24

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view sensitive information via an Information Disclosure vulnerability in the comment restriction feature. The affected versions are before version 7.6.17, from vers...

4.3

CVE-2019-20411

EPSS 0.2%
Veröffentlicht 29.06.2020 06:15:10
Zuletzt bearbeitet 21.11.2024 04:38:25

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify Wallboard settings via a Cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2...

5.3

CVE-2019-20412

EPSS 0.53%
Veröffentlicht 29.06.2020 06:15:10
Zuletzt bearbeitet 21.11.2024 04:38:25

The Convert Sub-Task to Issue page in affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate the following information via an Improper Authentication vulnerability: Workflow names; Project Key, if it is part of...

7.5

CVE-2019-20413

EPSS 0.84%
Veröffentlicht 29.06.2020 06:15:10
Zuletzt bearbeitet 21.11.2024 04:38:25

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability on the UserPickerBrowser.jspa page. The affected versions are before version 7.13.9...

<1...567891011...14>