virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2020-14173 Cross Site Scripting Vulnerability

description-logoDescription

The file upload feature in Atlassian Jira Server and Data Center in affected versions allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability. The affected versions are before version 8.5.4, from version 8.6.0 before 8.6.2, and from version 8.7.0 before 8.7.1.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2020-14173

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74263
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server