virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2020-14174 Authorization Bypass Vulnerability

description-logoDescription

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view titles of a private project via an Insecure Direct Object References (IDOR) vulnerability in the Administration Permission Helper. The affected versions are before version 7.13.6, from version 8.0.0 before 8.5.7, from version 8.6.0 before 8.9.2, and from version 8.10.0 before 8.10.1.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2020-14174

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74261
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server