virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2020-4022 Cross Site Scripting Vulnerability

description-logoDescription

The attachment download resource in Atlassian Jira Server and Data Center before 8.5.5, and from 8.6.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability issue attachments with a mixed multipart content type.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2020-4022

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74269
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server