Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
atlassian jira software data center vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-36231
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnerability. The affected versions are before version 8.5.10, and from version 8.6.0...
Atlassian Jira
Atlassian Jira 8.13.3
Atlassian Jira Software Data Center
Atlassian Jira Software Data Center 8.13.3
4
CVSSv2
CVE-2019-20106
Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticket to which they do not have commenting permissions via a broken access control...
Atlassian Jira
Atlassian Jira 8.6.0
Atlassian Jira Software Data Center
Atlassian Jira Software Data Center 8.6.0
4
CVSSv2
CVE-2020-14174
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view titles of a private project via an Insecure Direct Object References (IDOR) vulnerability in the Administration Permission Helper. The affected versions are before version 7.13.6, from...
Atlassian Jira
Atlassian Jira 8.10.0
Atlassian Jira Software Data Center
Atlassian Jira Software Data Center 8.10.0
5
CVSSv2
CVE-2020-14178
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate project keys via an Information Disclosure vulnerability in the /browse.PROJECTKEY endpoint. The affected versions are before version 7.13.7, from version 8.0.0 before 8.5.8, and from...
Atlassian Jira
Atlassian Jira Software Data Center
5
CVSSv2
CVE-2019-20403
The API in Atlassian Jira Server and Data Center before version 8.6.0 allows remote attackers to determine if a Jira project key exists or not via an information disclosure vulnerability....
Atlassian Jira
Atlassian Jira Software Data Center
4.3
CVSSv2
CVE-2019-20411
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify Wallboard settings via a Cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2....
Atlassian Jira
Atlassian Jira Software Data Center
4
CVSSv2
CVE-2019-20410
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view sensitive information via an Information Disclosure vulnerability in the comment restriction feature. The affected versions are before version 7.6.17, from version 7.7.0 before 7.13.9, and...
Atlassian Jira
Atlassian Jira Software Data Center
4.3
CVSSv2
CVE-2019-20415
Atlassian Jira Server and Data Center in affected versions allows remote attackers to modify logging and profiling settings via a cross-site request forgery (CSRF) vulnerability. The affected versions are before version 7.13.3, and from version 8.0.0 before 8.1.0....
Atlassian Jira
Atlassian Jira Software Data Center
5
CVSSv2
CVE-2020-14167
The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impact the application's availability via an Denial of Service (DoS)...
Atlassian Jira
Atlassian Jira Software Data Center
5
CVSSv2
CVE-2019-20898
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to access sensitive information without being authenticated in the Global permissions screen. The affected versions are before version 8.8.0....
Atlassian Jira
Atlassian Jira Software Data Center
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
arbitrary code
CVE-2020-36079
microfocus
CVE-2021-26561
CVE-2021-21972
NULL pointer dereference
CVE-2021-25281
deserialization
solutions business manager
CVE-2020-28243
CVE-2020-27618
1
2
3
4
5
NEXT »