exploitDog

GHSA-9h25-h4g5-wgwf

Опубликовано: 16 фев. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the "Move objects" feature. The affected versions are before version 4.21.0.

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the "Move objects" feature. The affected versions are before version 4.21.0.

Ссылки

EPSS

Процентиль: 58%

0.0037

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-43948

CVSS3: 4.3

nvd

почти 4 года назад

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view the names of private objects via an Improper Authorization vulnerability in the "Move objects" feature. The affected versions are before version 4.21.0.

EPSS

Процентиль: 58%

0.0037

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863