The CustomAppsRestResource list resource in Atlassian Navigator Links before version 3.3.23, from version 4.0.0 before version 4.3.7, from version 5.0.0 prior to 5.0.1, and from version 5.1.0 prior to 5.1.1 allows remote malicious users to enumerate all linked applications, including those that are restricted or otherwise hidden, through an incorrect authorization check.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
atlassian navigator links |