Affected versions of Atlassian Jira Server and Data Center allow remote malicious users to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnerability. The affected versions are before version 8.5.10, and from version 8.6.0 prior to 8.13.2.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian jira |
||
atlassian jira data center |
||
atlassian jira data center 8.13.3 |
||
atlassian jira server |
||
atlassian jira server 8.13.3 |
||
atlassian jira software data center |