virus logo FortiClient Vulnerability

Atlassian Jira Software Server CVE-2019-14997 Information Disclosuer Vulnerability

description-logoDescription

The AccessLogFilter class in Jira before version 8.4.0 allows remote anonymous attackers to learn details about other users, including their username, via an information expose through caching vulnerability when Jira is configured with a reverse Proxy and or a load balancer with caching or a CDN.

affected-products-logoAffected Applications

Jira Software Server

CVE References

CVE-2019-14997

Other References

https://jira.atlassian.com/projects/JRASERVER/issues/
ID 74292
Created Dec 20, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Atlassian
Patch manual
Application Jira Software Server