virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2019-15013 Authorization Bypass Vulnerability

description-logoDescription

The WorkflowResource class removeStatus method in Jira before version 7.13.12, from version 8.0.0 before version 8.4.3, and from version 8.5.0 before version 8.5.2 allows authenticated remote attackers who do not have project administration access to remove a configured issue status from a project via a missing authorisation check.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2019-15013

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74227
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server