virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2019-20412 Authentication Bypass Vulnerability

description-logoDescription

The Convert Sub-Task to Issue page in affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate the following information via an Improper Authentication vulnerability: Workflow names; Project Key, if it is part of the workflow name; Issue Keys; Issue Types; Status Types. The affected versions are before version 7.13.9, and from version 8.0.0 before 8.4.2.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2019-20412

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74242
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server