exploitDog

GHSA-h4rj-8m5x-jcrg

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails between a Jira instance and the SMTP server via man-in-the-middle (MITM) vulnerability.

The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails between a Jira instance and the SMTP server via man-in-the-middle (MITM) vulnerability.

Ссылки

EPSS

Процентиль: 59%

0.00387

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2020-14168

CVSS3: 5.9

nvd

около 5 лет назад

The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails between a Jira instance and the SMTP server via man-in-the-middle (MITM) vulnerability.

EPSS

Процентиль: 59%

0.00387

Низкий

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-200