exploitDog

CVE-2019-5095

Опубликовано: 31 окт. 2019

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

An issue summary information disclosure vulnerability exists in Atlassian Jira Tempo plugin, version 4.10.0. Authenticated users can obtain the summary for issues they do not have permission to view via the Tempo plugin.

Ссылки

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0838
Exploit
Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0838
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tempo:tempo:4.10.0:*:*:*:*:jira:*:*

EPSS

Процентиль: 60%

0.00393

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-6494-qxwg-9mq6

CVSS3: 4.3

github

больше 3 лет назад

An issue summary information disclosure vulnerability exists in Atlassian Jira Tempo plugin, version 4.10.0. Authenticated users can obtain the summary for issues they do not have permission to view via the Tempo plugin.

EPSS

Процентиль: 60%

0.00393

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862