FortiClient VulnerabilityAtlassian Jira Software Server CVE-2020-36287 Authorization Bypass Vulnerability
Description
The dashboard gadgets preference resource of the Atlassian gadgets plugin used in Jira Server and Jira Data Center before version 8.13.5, and from version 8.14.0 before version 8.15.1 allows remote anonymous attackers to obtain gadget related settings via a missing permissions check.
Affected Applications
Jira Software Server
CVE References
CVE-2020-36287Other References
https://jira.atlassian.com/projects/JRASERVER/issues/| ID | 74276 |
| Created | Dec 20, 2022 |
| Description Updated |
Dec 14, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Atlassian |
| Patch | manual |
| Application | Jira Software Server |