virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2021-43942 Cross Site Scripting Vulnerability

description-logoDescription

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Reflected Cross-Site Scripting (XSS) vulnerability in the /rest/collectors/1.0/template/custom endpoint. To exploit this issue, the attacker must trick a user into visiting a malicious website. The affected versions are before version 8.13.15, and from version 8.14.0 before 8.20.3.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2021-43942

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74230
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server